Guest user Created: Jan 21, 2022 Last commented: Jan 21, 2022

Questions about laws and regulations

Regarding the Laws and regulations page in your site https://advisera.com/27001academy/knowledgebase/laws-regulations-information-security-business-continuity/ 1. Is the information updated? Can we use it as it is? We operate in USA, Germany, China, also a bit in Spain, and England 2. Is this list valid for both the control A.18.1 Compliance with legal and contractual requirements and clause 4.2 Understanding the needs and expectations of interested parties? Or, what is the difference?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Jan 21, 2022

1. Is the information updated? Can we use it as it is? We operate in USA, Germany, China, also a bit in Spain, and England

Please note that this list is not fully up-to-date because it depends on voluntary contributions from our readers. To make sure you have the latest list of laws and regulations, it would be best to hire a local legal adviser. You can use it as a starting point.

2. Is this list valid for both the control A.18.1 Compliance with legal and contractual requirements and clause 4.2 Understanding the needs and expectations of interested parties? Or, what is the difference?

You can use the information in this list to partially cover both clause 4.2 and control A.18.1.1 (you also need to consider contractual requirements).

This article will provide you a further explanation about needs and expectations:

How to identify ISMS requirements of interested parties in ISO 27001 https://advisera.com/27001academy/blog/2017/02/06/how-to-identify-isms-requirements-of-interested-parties-in-iso-27001/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jan 21, 2022

Expert Advice Community