• Content Type

GB30422640

Information technology. Governance of data. Guidelines for data classification

Last updated: 7 Jan 2025

Development Stage

Pre-draft

Draft

Published

31 Jan 2022

Abstract

This document complements the existing International Standards on IT governance (ISO/IEC 38500) and data governance (ISO/IEC 38505-1). It is designed to provide practical guidance for organizations including governing bodies and management to allow them to:

— maintain an oversight of their data portfolio,

— understand the business context, value, sensitivity and risk associated with the data, and

— apply mechanisms that are both proportionate and appropriate, ensuring that data is protected, and is only used for intended purposes consistent with the organization’s obligations. © ISO/IEC 2022 All rights reserved

Scope

This document provides essential guidance for members of governing bodies of organizations and management on the use of data classification as a means to support the organization’s overall data governance policy and associated systems. It sets out important factors to be considered in developing and deploying a data classification system. © ISO/IEC 2022 All rights reserved

External Links

More information
BSI webpage
[site_reviews_summary assigned_posts=”post_id” hide=”bars,if_empty” text=”{rating} out of {max} stars ({num} reviews)”]

Let the community know

Categorisation

Domain: Horizontal
Scope: AI-enabling - Data, Information management
Topic: Data management, Data processing, Data protection, Interoperability, Organisational governance
Type: Process, management and governance

Key Information

Organisation: ISO International Organization for Standardization ; IEC International Electrotechnical Commission, BSI
Committee: ISO/IEC JTC 1/SC 40
Relevant UK committee: IST/60/1
Share on XShare on LinkedIn

Discussion

[check_original_title]