ISO IEC 27050-4-2021 pdf Information technology — Electronic discovery — Part 4: Technical readiness
7.1.2 ESI landscape ISO/IEC 27050-1:2019, Clause 7, provides useful information on the common types of ESI, common sources of ESI, ESI representations and non-ESI as part of the electronic discovery process. This information, when combined with the matter specific requirements, can serve as a useful starting point in identifying potential sources of relevant ESI. These sources can include business units, people, ICT systems and hardcopy. Identification should be as thorough and comprehensive as possible. The scope of ESI potentially subject to preservation and disclosure can be uncertain in the early phases of a matter. The nature of the matter itself and the individuals involved can change as the matter progresses. The identification team should anticipate change and have a procedure in place for capturing any newly identified ESI. Identification requires diligent investigation and analytical thinking. 7.1.3 Data map A data map is a comprehensive and defensible inventory of an organization’s ICT systems that store ESI. It is important to create a data map to provide a centralized listing of which types of ESI exist within the organization (see ISO/IEC 27050-3:2020, 6.2.5). This should also include details of specific locations of data sets and can include the route data takes when in transit alongside, for example, who has control over a mailbox and where the servers sit including any hardcopy material requirements.
7.1.4 Data classification All ESI should be subject to data classification. This can be according to government standards, market sensitivity, internal governance, privilege, control of data under data protection or privacy legislation, or for the purposes of any matter requiring discovery. This classification can affect the decisions around the management, traffic and encryption that should be created via the architecture and system design.
7.2.2 Assessing preservation needs It is important to establish preservation procedures covering employees, ICT, legal and former and departing employees. Based on the procedures, the team can assess the needs for preservation with regard to where the relevant ESI is stored and technical implications of collection. The scope of preservation should be determined. The number of subjects affected, who are required to act, who can control ESI, and the time period for preservation are among the first decisions. The team should consider the potential for third-party preservation requirements. A preservation notice should be issued to all relevant parties, including steps to be taken to ensure appropriate preservation. The team should put in place a process for continued preservation throughout the relevant time period, i.e. the life of the case or project.
- ISO IEC 27036-1-2021 pdf Cybersecurity — Supplier relationships — Part 1: Overview and concepts
- ISO IEC 27013-2021 pdf Information security, cybersecurity and privacy protection — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1
- ISO IEC 26580-2021 pdf Software and systems engineering — Methods and tools for the feature- based approach to software and systems product line engineering
- ISO IEC 24735-2021 pdf Information technology — Office equipment — Method for measuring digital copying productivity
- ISO IEC 24711-2021 pdf Information technology — Office equipment — Method for the determination of ink cartridge yield for colour inkjet printers and multi- function devices that contain printer components
- ISO IEC 23544-2021 pdf Information Technology — Data centres — Application Platform Energy Effectiveness (APEE)
- ISO IEC 23510-2021 pdf Information technology — 3D printing and scanning — Framework for an Additive Manufacturing Service Platform (AMSP)
- ISO IEC 23127-1-2021 pdf Information technology — Learning, education, and training — Metadata for facilitators of online learning — Part 1: Framework
- ISO IEC 23126-2021 pdf Information technology for learning, education and training — Ubiquitous learning resource organization and description framework
- ISO IEC 21838-2-2021 pdf Information technology — Top-level ontologies (TLO) — Part 2: Basic Formal Ontology (BFO)
- IEC 60286-1-2021 pdf Packaging of components for automatic handling – Part 1: Tape packaging of components with axial leads on continuous tapes
- ISO IEC 7816-8-2021 pdf Identification cards — Integrated circuit cards — Part 8: Commands and mechanisms for security operations
- ISO IEC 17991-2021 pdf Information technology — Office equipment — Method for measuring scanning productivity of digital scanning devices
- IEC 62769-6-2021 pdf Field device integration (FDI) – Part 6: Technology Mapping
- IEC 60860-2014 pdf Radiation protection instrumentation – Warning equipment for criticality accidents
- BS ISO IEC 15420-2009 pdf Information technology一 Automatic identification and data capture techniques EAN/UPC bar code symbology specification
- BS IEC 60860-2014 pdf Radiation protection instrumentation一 Warning equipment for criticality accidents
- BS ISO IEC 19762.5-2008 pdf Information technology一 Automatic identification and data capture (AIDC) techniques – Harmonized vocabulary Part 5: Locating systems
- ISO IEC 24711-2021 pdf Information technology — Office equipment — Method for the determination of ink cartridge yield for colour inkjet printers and multi- function devices that contain printer components
- ISO IEC 24735-2021 pdf Information technology — Office equipment — Method for measuring digital copying productivity