Browse Definitions :
Definition

BS 10012:2009 (British Standard 10012:2009)

British Standard 10012:2009 (BS 10012:2009) is a standard enacted by the U.K. government in order to further the privacy of sensitive personal information held by British corporations.

BS 10012:2009 came into effect May 31, 2009, and mandates the implementation of a personal information management system (PIMS) within corporate security programs. Two of the most salient points of the standard are that corporations should commit not to take or use customer data unless absolutely necessary, and to inform customers exactly how and under what circumstances their information will be used.

The standard provides guidelines for how to create a PIMS as a framework for enacting data privacy and protection, not strict technical regulations. In this way, the standard functions more like COBIT than the Payment Card Industry Data Security Standard (PCI DSS).

The standard is intended to help companies comply with the Data Protection Act 1998 by giving guidelines for areas such as employee security awareness training, risk assessments, data retention and disposal and others.

This was last updated in October 2010

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • privacy compliance

    Privacy compliance is a company's accordance with established personal information protection guidelines, specifications or ...

  • data governance policy

    A data governance policy is a documented set of guidelines for ensuring that an organization's data and information assets are ...

SearchSecurity

SearchHealthIT

  • telemedicine (telehealth)

    Telemedicine is the remote delivery of healthcare services, such as health assessments or consultations, over the ...

  • Project Nightingale

    Project Nightingale is a controversial partnership between Google and Ascension, the second largest health system in the United ...

  • medical practice management (MPM) software

    Medical practice management (MPM) software is a collection of computerized services used by healthcare professionals and ...

SearchDisasterRecovery

  • disaster recovery (DR) test

    A disaster recovery test (DR test) is the examination of each step in a disaster recovery plan as outlined in an organization's ...

  • crisis management plan (CMP)

    A crisis management plan (CMP) is a document that outlines the processes an organization will use to respond to a critical ...

  • pandemic plan

    A pandemic plan is a documented strategy for business continuity in the event of a widespread outbreak of a dangerous infectious ...

SearchStorage

  • megabytes per second (MBps)

    Megabytes per second (MBps) is a unit of measurement for data transfer speed to and from a computer storage device.

  • zettabyte

    A zettabyte is a unit of measurement used by technology professionals and the general public to describe a computer or other ...

  • hybrid flash array

    A hybrid flash array is a solid-state storage system that contains a mix of flash memory drives and hard disk drives.

Close