{
    "Disclaimer": [
        "The information in this database is for general guidance and is not to be relied upon as professional advice.",
        "DSIT has tried to ensure that the information on this database is accurate and up to date. DSIT will not accept liability for any loss and/or damage or inconvenience arising as a consequence of any use of or the inability to use any information on this website. DSIT endeavours to provide a reliable service; DSIT does not guarantee that its service will be uninterrupted or error-free. DSIT shall not be responsible for claims brought by third parties arising from your use of this database.",
        "DSIT assumes no responsibility for the contents of linked websites. The inclusion of any link should not be taken as endorsement of any kind by DSIT of the linked website or any association with its operators. DSIT has no control over the availability of the linked pages."
    ],
    "Copyright": "The copyright of the original material remains that of the original authors and any usage of excerpts in the mapping is made under fair use. References to organisations do not imply endorsement by DSIT.",
    "Version": "3.0",
    "Data": {
        "ETSI": {
            "EN 319 401 - General Policy Requirements for Trust Service Providers": {
                "link": "https://www.etsi.org/deliver/etsi_en/319400_319499/319401/03.02.00_20/en_319401v030200a.pdf",
                "requirements": [
                    {
                        "requirementID": "REQ-7.9.3-02",
                        "requirementText": "Where the breach of security or loss of integrity is likely to adversely affect a natural or legal person to whom the trusted service has been provided, the TSP shall also notify the natural or legal person of the breach of security or loss of integrity without undue delay."
                    },
                    {
                        "requirementID": "REQ-7.9.3-03",
                        "requirementText": "The TSP shall establish a simple procedure allowing its staff, contractors and customers to report possible network and information security incidents."
                    },
                    {
                        "requirementID": "REQ-7.9.3-04",
                        "requirementText": "The TSP shall communicate the reporting procedure to its contractors and customers and shall train its staff to follow the reporting procedure and to address the appropriate point of contact."
                    }
                ]
            }
        }
    }
}