Supplementary Documentation

1. Access Control List for RBAC
2. Data Domain and Stewardship Directory
3. Data Governance Role Directory
4. Data Handling Guidelines
5. Data Inventory and Asset Management Documents​
6. ​Data Quality Policy
7. Data Request Procedure

References

Data Management

1. Policy on Intellectual Property Management
2. Policy and Procedures on Commitment Approval and Contract Execution
3. Bring-Your-Own-Device (BYOD) Policy
4. Cloud Service Policy
5. Data Leakage Prevention (DLP) Policy
6. General Principles of Information Security
7. Guidelines for Information Security Incident Handling
8. Guidelines for Usage of Information Resources
9. Remote Access Security Standard
10. Staff Handbook of Information Security

External Regulations

1. Personal Data (Privacy) Ordinance
2. Personal Data (Privacy) (Amendment) Ordinance 2021
3. Personal Information Protection Law (PIPL)
4. General Data Protection Regulation (GDPR)

Personal Privacy

1. Personal Data Breach Protocol
2. Privacy Management Programme
3. Privacy Policy Statement and Personal Information Collection Statement

Return to Home FAQ