Content library
TISAX: Information security
9.5.2: Management of contractual obligations with partners

How to fill the requirement

TISAX: Information security

9.5.2: Management of contractual obligations with partners

Task name
Priority
Status
Theme
Policy
Other requirements
Passing client requirements on to relevant partner organizations
Critical
High
Normal
Low
Fully done
Mostly done
Partly done
Not done
Privacy
Security and responsibilities
requirements

Task is fulfilling also these other security requirements

9.5.2: Management of contractual obligations with partners
TISAX
1. Task description

The organization must make sure that contractual obligations set by clients are passed to the used subcontractors and other partners (sub processors).

The compliance of of partner organizations with the set obligations must be reviewed regularly. Each partner must have named contact person and the necessary contact information must be up-to-date.

Inventory and documentation of data processing agreements
Critical
High
Normal
Low
Fully done
Mostly done
Partly done
Not done
Privacy
Data transfer and disclosure
requirements

Task is fulfilling also these other security requirements

28. Data processor
GDPR
15.1.2: Addressing security within supplier agreements
ISO27 Full
13.2.2: Agreements on information transfer
ISO27 Full
A.8.2.4: Infringing instruction
ISO 27701
5.14: Information transfer
ISO27k1 Full
1. Task description

The processors of personal data (e.g. providers of data systems, other partners using our employee or customer data) and the agreements related to the processing of personal data have been documented. The documentation includes e.g.:

  • Processor name and location
  • Purpose of processing data
  • Status of agreement
No items found.