Compliance Requirements


Compliance Requirements is one of the aspects of CISSP training course. Following are some legal and legislative terms that are significant to the Information Security domain.

1- SPI: Sensitive Personal Information

2- PII: Personally Identifiable Information. According to NIST special publication 800-122, the Personally Identifiable Information (PII) is defined as:
  • Any information that can be used to find out the individual’s identity, such as his name, social security number, date, and birthplace, or biometric records.
  • Any information which belongs to an individual such as medical, educational, financial, and employment information.

3- Privacy : The protection of SPI or PII that can be used to identify a person in context with a group or individual.

4- Common law legal system : The legal system that uses common law is called a common law legal system. Generally, three categories are established under the common law:
  • Regulatory law
  • Criminal law
  • Civil law
[rev_slider alias=”Advertisement-1″ /]

Regulatory law: It is also termed as Administrative law. Statutory law, the legislative statute is a legal system that is settled by the legislative branch of the government.

Criminal law: Deals with the violations of government laws. Religious law is a legal system based on religious principles. E.g., Islam, Hindu, and Christian laws. Common Criminal Code offences include:

  • Assault
  • Impaired driving
  • Break and enter
  • Robbery
In many countries, a criminal act is legally seen as an offence against the state.
If you wish, you can read more

Civil law: Deals with disputes between private parties or or negligent acts that cause harm to others and deals with the filed by private parties.

Common civil suits include disputes about:

  • The terms of a contract
  • Damage or injuries
  • Property
  • Reputation

Civil laws are a legal system based on codified law and are opposed to common law.

So Read more. What Is the Difference Between Criminal Law and Civil Law

5- Privacy laws : These Laws deal with protecting and preserving the rights of individual’s privacy.