GDPR · Chapter IV — Controller and processor
Art. 32 Security of processing
Implement appropriate technical and organizational measures — including encryption, confidentiality, integrity, availability and resilience — to ensure a level of security appropriate to the risk.
Mapped across 21 provisions
Equivalent and related requirements in other frameworks and regulations.
- CIS Controls v8PartialCurated3.11 Encrypt sensitive data at rest
Cryptography & data protection
- CIS Controls v8RelatedCurated11.1 Establish and maintain a data recovery process
Backup & recovery
- DORAPartialCuratedArt. 9 Protection and prevention
Cryptography & data protection
- DORARelatedCuratedArt. 12 Backup policies and recovery procedures
Backup & recovery
- Essential EightRelatedCuratedE8-8 Regular backups
Backup & recovery
- GLBAPartialCurated§314.4(c)(3) Encryption of customer information
Cryptography & data protection
- HIPAAPartialCurated§164.312(e)(1) Transmission security
Cryptography & data protection
- ISO 27001PartialCuratedA.8.24 Use of cryptography
Cryptography & data protection
- ISO 27001RelatedCuratedA.8.13 Information backup
Backup & recovery
- LGPDPartialCuratedArt. 46 Security measures
Cryptography & data protection
- NIS2PartialCuratedArt. 21(2)(h) Cryptography and encryption
Cryptography & data protection
- NIST 800-171PartialCurated3.13.11 Employ FIPS-validated cryptography
Cryptography & data protection
- NIST 800-53PartialCuratedSC-8 Transmission confidentiality and integrity
Cryptography & data protection
- NIST 800-53PartialCuratedSC-28 Protection of information at rest
Cryptography & data protection
- NIST 800-53RelatedCuratedCP-9 System backup
Backup & recovery
- NIST CSF 2.0PartialCuratedPR.DS-01 Confidentiality of data-at-rest protected
Cryptography & data protection
- NIST CSF 2.0PartialCuratedPR.DS-02 Confidentiality of data-in-transit protected
Cryptography & data protection
- NIST CSF 2.0RelatedCuratedPR.DS-11 Backups of data created and tested
Backup & recovery
- PCI DSSPartialCuratedReq. 3 Protect stored account data
Cryptography & data protection
- PCI DSSPartialCuratedReq. 4 Protect cardholder data with strong cryptography during transmission
Cryptography & data protection
- SOC 2PartialCuratedCC6.7 Restricting data transmission
Cryptography & data protection