8.3.4 All sensitive data has been identified and a policy is in place
Verify that all sensitive data created and processed by the application has been identified, and ensure that a policy is in place on how to deal with sensitive data. (C8)
| Level 1 |
X |
| Level 2 |
X |
| Level 3 |
X |