CPL-01.3 ยท Ability To Demonstrate Conformity

Control Description

Mechanisms exist to ensure the organization is able to demonstrate conformity with applicable cybersecurity and data protection laws, regulations and/or contractual obligations.

Control Question
Assessment question for control validation

Does the organization ensure it is able to demonstrate conformity with applicable cybersecurity and data protection laws, regulations and/or contractual obligations?

Control Weighting
8
Validation Cadence
Annual
NIST CSF Function
Protect
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 1 - Strategic
Tier 2 - Operational
Tier 3 - Tactical
Core Control Designations
Special designations and baseline inclusions
MAD: CPL-01.3
AI Model: CPL-01.3
Additional Metadata
Applicability (Process):
x