DIN Standards are the result of work at the national, European, and international level. Proposals for new standards are submitted and, once accepted, the standards project is carried out according to set rules of procedure by the relevant DIN Standards Committee, the relevant Technical Committee of the European standards organization CEN (CENELEC for electrotechnical standards), or the relevant committee at the International Standards Organization, ISO (IEC for electrotechnical projects). DIN Standards are reviewed at least every five years. If a standard no longer reflects the current state of technology, it is either revised or withdrawn.
Three Protection Classes of DIN 66399
The protection requirement of data is classified into three different classes. To determine the specific protection requirement and resulting protection class, it is necessary to assess data type.
- Class 1 is for the Normal Protection required for Internal Data where disclosure would have a negative impact on a company or a risk of identity theft of an Individual.
- Class 2 is for the Higher Protection for Confidential Data where disclosure would have a considerably negative effect or could breach legal obligations of a company, or offer a risk of adverse social or financial standing of an individual.
- Class 3 Is for Very High Protection for Confidential and Top Secret Data which, if disclosed, could have terminal consequences for a company or government entity, and have a health and safety or personal freedom risk to individuals.
- NSA/CSS EPL Lists
- Data Sheets
- NSN Program
- Regulatory Compliance
- DIN Standards
- GSA and Other Contracts
- CUI Directive: Destroy Paper to 1mmx5mm Particle Size
- GSA Catalog
- Data Destruction Questionnaire