Industry Standard for Data Protection

2024: Transition of Avito, VimpelCom, Tinkoff Bank and Yandex to the Industry Data Protection Standard

On April 18, 2024, representatives of Avito, VimpelCom, Tinkoff Bank and Yandex signed a document on the transition to the Industry Data Protection Standard developed at the Big Data Association (ABD) site.

As the press service of the ABD clarifies, the document is a roadmap that defines the standards for storing and protecting data, allows you to assess the effectiveness of processes within the information security system in the company.

Unsplash

The industry standard contains a set of measures that allow personal data operators to independently assess the maturity of the established information protection processes, confirm the correctness of the conclusions made with the involvement of external organizations and effectively improve management and organizational processes.

According to the new standard, independent audits can be carried out by expert groups from among the specialists of the companies themselves and organizations licensed to carry out activities for the technical protection of confidential information. The companies that supported the standard undertake to conduct an audit every year.

They will evaluate the security system according to a number of criteria: the model of organization and management of data protection, the policy of information protection, the plan of measures to develop threats. Separately, it is considered how the company identifies vulnerabilities, responds to emergency situations, as well as how staff are trained, the Big Data Association said in a statement.

According to ABD President Anna Serebryanikova, the industry standard for data protection sets a high bar for information security systems, which is especially important now, when "the risks of cyber attacks are especially high." She expressed the hope that the Industry Data Protection Standard will be supported by other IT market participants.^[1]

Notes