News

2 new Authority Documents have been added to the UCF

December 2, 2019 | Weekly Updates

National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework, NIST Special Publication 800-181
AD ID: 2925
Status: Released
Availability: Free
Citation Format: ID (Reference ID)
Document Type: National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework, NIST Special Publication 800-181
Originator: US National Institute of Standards and Technology
Parent Category: North America
Effective Date: 2017-08-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 1543 citations mapped to 689 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-11-27.

Percent (%) of Citations with multiple mandates: 35.7%

Percent (%) of terms that were non-standard: 4.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.2% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 22.8% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 7.1% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


AICPA Code of Professional Conduct
AD ID: 3027
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: AICPA Code of Professional Conduct
Originator: American Institute of Certified Public Accountants
Parent Category: North America
Effective Date: 2014-12-15
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 151 citations mapped to 36 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-11-26.

Percent (%) of Citations with multiple mandates: 19.5%

Percent (%) of terms that were non-standard: 3.20% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 22.5% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 15.9% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

July 29, 2019 | Weekly Updates

SSAE No. 18, Attestation Standards: Clarification and Recodification
AD ID: 2978
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: SSAE No. 18, Attestation Standards: Clarification and Recodification
Originator: American Institute of Certified Public Accountants
Parent Category: North America
Effective Date: 2016-04-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 1498 citations mapped to 231 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-07-22.

Percent (%) of Citations with multiple mandates: 11.2%

Percent (%) of terms that were non-standard: 9.10% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 9.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 38.8% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 81.8% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 10.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Cloud Computing Compliance Controls Catalogue (C5)
AD ID: 3007
Status: Released
Availability: Free
Citation Format: ID (Reference ID)
Document Type: Cloud Computing Compliance Controls Catalogue (C5)
Originator: Bundesamt für Sicherheit in der Informationstechnik, Federal Office for Information Security (BSI) (Germany)
Parent Category: Europe
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 825 citations mapped to 335 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-07-25.

Percent (%) of Citations with multiple mandates: 39.4%

Percent (%) of terms that were non-standard: 13.10% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 13.5% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.8% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

June 10, 2019 | Weekly Updates

Guidelines on Information Security, Electronic Banking, Technology Risk Management and Cyber Frauds
AD ID: 1527
Status: Released
Availability: Free
Citation Format: Ch (Chapter) and § (Legal)
Document Type: Guidelines on Information Security, Electronic Banking, Technology Risk Management and Cyber Frauds
Originator: Reserve Bank of India
Parent Category: Asia
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 1267 citations mapped to 617 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-06-06.

Percent (%) of Citations with multiple mandates: 35.9%

Percent (%) of terms that were non-standard: 8.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0.1% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 17.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 100% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


ISO/IEC 20000-1:2018, Information technology -- Service management --Part 1: Service management system requirements
AD ID: 3002
Status: Released
Availability: For Purchase
Citation Format: ¶ (Para and Page) with Section Titles
Document Type: ISO/IEC 20000-1:2018, Information technology -- Service management --Part 1: Service management system requirements
Originator: International Organization for Standardization
Parent Category: International
Effective Date: 2018-09-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 695 citations mapped to 276 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-06-03.

Percent (%) of Citations with multiple mandates: 27.9%

Percent (%) of terms that were non-standard: 9.80% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 9.4% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 35.8% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 28.6% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 6.9% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

January 14, 2019 | Weekly Updates

Michigan Identity Theft Protection Act, Act 452 of 2004, Sections 445.61 thru 445.72a
AD ID: 764
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Michigan Identity Theft Protection Act, Act 452 of 2004, Sections 445.61 thru 445.72a
Originator: Michigan State Legislature
Parent Category: North America
Effective Date: 2005-03-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 136 citations mapped to 33 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-01-07.

Percent (%) of Citations with multiple mandates: 9.7%

Percent (%) of terms that were non-standard: 17.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 18.9% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 6.6% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 21.4% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Tennessee Code, Title 47, Chapter 1,8 Part 21, Identity Theft Deterrence, Sections 47-18-2101 thru 47-18-2110
AD ID: 802
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Tennessee Code, Title 47, Chapter 1,8 Part 21, Identity Theft Deterrence, Sections 47-18-2101 thru 47-18-2110
Originator: Tennessee General Assembly
Parent Category: North America
Effective Date: 2005-07-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 167 citations mapped to 40 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-01-08.

Percent (%) of Citations with multiple mandates: 8.7%

Percent (%) of terms that were non-standard: 17.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 6.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 4.2% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 18.2% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

January 7, 2019 | Weekly Updates

California Civil Code Title 1.81 Customer Records § 1798.80-1798.84
AD ID: 846
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: California Civil Code Title 1.81 Customer Records § 1798.80-1798.84
Originator: California Legislature
Parent Category: North America
Effective Date: 2008-01-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 217 citations mapped to 57 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-01-02.

Percent (%) of Citations with multiple mandates: 7.8%

Percent (%) of terms that were non-standard: 24.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 4.7% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 32.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 20% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.9% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


2017 New Mexico Statutes Chapter 57 - Trade Practices and Regulations Article 12C - Data Breach Notification Section 57-12C-1
AD ID: 2962
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: 2017 New Mexico Statutes Chapter 57 - Trade Practices and Regulations Article 12C - Data Breach Notification Section 57-12C-1
Originator: New Mexico State Legislature
Parent Category: North America
Effective Date: 2017-06-16
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 56 citations mapped to 24 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-01-03.

Percent (%) of Citations with multiple mandates: 5.9%

Percent (%) of terms that were non-standard: 18.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 6.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 1.8% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

December 24, 2018 | Weekly Updates

Digital Identity Guidelines: Enrollment and Identity Proofing
AD ID: 2951
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Digital Identity Guidelines: Enrollment and Identity Proofing
Originator: US National Institute of Standards and Technology
Parent Category: North America
Effective Date: 2017-06-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 206 citations mapped to 89 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-12-21.

Percent (%) of Citations with multiple mandates: 10.2%

Percent (%) of terms that were non-standard: 7.80% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 9.2% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 23.3% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


California Civil Code Division 3 Part 4 Title 1.81.5 California Consumer Privacy Act of 2018
AD ID: 2957
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: California Civil Code Division 3 Part 4 Title 1.81.5 California Consumer Privacy Act of 2018
Originator: California Legislature
Parent Category: North America
Effective Date: 2020-01-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 125 citations mapped to 55 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-12-18.

Percent (%) of Citations with multiple mandates: 28.4%

Percent (%) of terms that were non-standard: 18.10% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 35.2% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 100% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 12.8% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

December 3, 2018 | Weekly Updates

Colorado Revised Statutes, Section 6-1-716, Notice of Security Breach
AD ID: 771
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Colorado Revised Statutes, Section 6-1-716, Notice of Security Breach
Originator: Colorado State Legislature
Parent Category: North America
Effective Date: 2006-09-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 59 citations mapped to 35 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-11-26.

Percent (%) of Citations with multiple mandates: 10.4%

Percent (%) of terms that were non-standard: 14.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.9% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 8.5% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Connecticut State Law, Section 36a-701b, Breach of security re computerized data containing personal information. Disclosure of breach. Delay for criminal investigation. Means of notice. Unfair trade practice
AD ID: 774
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Connecticut State Law, Section 36a-701b, Breach of security re computerized data containing personal information. Disclosure of breach. Delay for criminal investigation. Means of notice. Unfair trade practice
Originator: Connecticut General Assembly
Parent Category: North America
Effective Date: 2006-01-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 35 citations mapped to 19 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-11-26.

Percent (%) of Citations with multiple mandates: 20.8%

Percent (%) of terms that were non-standard: 13.40% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 5.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 11.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 25% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

July 16, 2018 | Weekly Updates

Framework for Improving Critical Infrastructure Cybersecurity
AD ID: 2934
Status: Released
Availability: Free
Citation Format: ID (Reference ID)
Document Type: Framework for Improving Critical Infrastructure Cybersecurity
Originator: US National Institute of Standards and Technology
Parent Category: North America
Effective Date: 2018-04-16
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 175 citations mapped to 132 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-07-11.

Percent (%) of Citations with multiple mandates: 22.1%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 25.7% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Directive (EU) 2016/1148 OF The European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union
AD ID: 2941
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Directive (EU) 2016/1148 OF The European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union
Originator: European Parliament
Parent Category: Europe
Effective Date: 2016-07-06
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 100 citations mapped to 60 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-07-11.

Percent (%) of Citations with multiple mandates: 25.4%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 23% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 66.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

June 25, 2018 | Weekly Updates

FFIEC IT Examination Handbook - Retail Payment Systems
AD ID: 2898
Status: Released
Availability: Free
Citation Format: ¶ (Para and Page) with Section Titles
Document Type: FFIEC IT Examination Handbook - Retail Payment Systems
Originator: US Federal Financial Institutions Examination Council (FFIEC)
Parent Category: North America
Effective Date: 2016-04-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 1188 citations mapped to 504 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-06-21.

Percent (%) of Citations with multiple mandates: 34.7%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0.5% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 37% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 50% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 5.3% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Canada Personal Information Protection and Electronic Documents Act
AD ID: 2937
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Canada Personal Information Protection and Electronic Documents Act
Originator: Parliament of Canada
Parent Category: North America
Effective Date: 2015-06-23
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 308 citations mapped to 159 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-06-18.

Percent (%) of Citations with multiple mandates: 30.7%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 8.1% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 41.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 25% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

May 28, 2018 | Weekly Updates

Trust Services Criteria
AD ID: 2924
Status: Released
Availability: For Purchase
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Trust Services Criteria
Originator: American Institute of Certified Public Accountants
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 598 citations mapped to 241 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-05-22.

Percent (%) of Citations with multiple mandates: 31.1%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 25.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 10.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Payment Card Industry (PCI) Data Security Standard, Testing Procedures
AD ID: 2938
Status: Released
Availability: Free
Citation Format: ID (Reference ID)
Document Type: Payment Card Industry (PCI) Data Security Standard, Testing Procedures
Originator: PCI Security Standards Council
Parent Category: Payment Card Organizations
Effective Date: 2016-04-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 603 citations mapped to 0 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-05-23.

Percent (%) of Citations with multiple mandates: 20.1%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 10.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

April 10, 2018 | Weekly Updates

Insurance Data Security Model Law, NAIC MDL-668
AD ID: 2920
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Insurance Data Security Model Law, NAIC MDL-668
Originator: National Association of Insurance Commissioners
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 215 citations mapped to 128 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-04-06.

Percent (%) of Citations with multiple mandates: 44%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 22.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 6.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672
AD ID: 2921
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672
Originator: National Association of Insurance Commissioners
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 383 citations mapped to 85 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-04-09.

Percent (%) of Citations with multiple mandates: 17.9%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 12% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 23.8% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.