DS/ISO/IEC 27050-3:2020现行

Introduction This document provides requirements and recommendations associated with the electronic discovery process elements described in ISO/IEC 27050-1. The requirements and recommendations are expected to be useful for both technical and non-technical personnel involved in some or all of the electronic discovery activities. Additional materials are provided to help organizations better understand the objectives associated with each electronic discovery process element and considerations to avoid failures, which can mitigate risk and expense if electronic discovery becomes an issue. Electronic discovery often serves as a driver for investigations, as well as evidence acquisition and handling activities (covered in ISO/IEC 27037). In addition, the sensitivity and criticality of the data sometimes necessitate protections like storage security to guard against data breaches (covered in ISO/IEC 27040). 1 Scope This document provides requirements and recommendations on activities in electronic discovery, including, but not limited to, identification, preservation, collection, processing, review, analysis and production of electronically stored information (ESI). In addition, this document specifies relevant measures that span the lifecycle of the ESI from its initial creation through to final disposition. This document is relevant to both non-technical and technical personnel involved in some or all of the electronic discovery activities. It is important to note that the user is expected to be aware of any applicable jurisdictional requirements.

DS ISO/IEC 27050-3 : 2017

ISO/IEC 27050-3 : 2020 -