Intellectual property rights

A) This is the document which is stipulating the requirement: It is being divided in different 'rights' so to say: Patents, Brands, Copyrights, etc. (Copyrights would be the 'Requirement' so to say)

Answer: Your assumption is correct when you say that "Intellectuele eigendomsrechten" is the document stipulating the requirement. Patents, Brands, and Copyrights are not about requirements yet, because they not define what you must accomplish.

As an example of requirement for copyright you may have something like "the organization must ensure the use of licensed software", because in this case it is clear what you must accomplish in terms of information security.

B) The intellectual property rights law (the requirement) is a part of Economic Law Code (document stipulating the requirement) Which one do you think is more suitable?

Answer: First it is important to understand that both are documents stipulating the requirement (only the Economic Law Code is a higher level document, embracing the intellectual property rights law). Regarding which one is more suitable, you should use the law which is more concrete on what needs to be done - therefore, it is probably your national law.

c) One more question regarding this document: As for the regulation of cryptographic controls, we do not have a specific law for cryptography. However, cryptography is being used in the GDPR as you've mentioned a couple of days ago. Does this mean that the control A.18.1.5 is applicable?

Answer: If the use of cryptography helps your organization to comply with GDPR , then controls A.18.1.5 is applicable.