Data Location
Data Location
Objective
Establish policies to restrict GC sensitive workloads from being inserted into device.
Key Considerations
- As per the Direction on Electronic Data Residency (ITPIN 2017-02), "All sensitive electronic data under government control, that has been cat egorized as Protected B, Protected C or is Classified, will be stored in a GC-approved computing facility located within the geographic boundaries of Canada or within the premises of a GC department located abroad, such as a diplomatic or consular mission."
Validation
- Confirm policy and tagging for data location.
- Borrower to sign MOU before device released.
- Borrower is not to place sensitive data on devices.
Applicable Service Models
- MS Intune
- Cloud services on any devices
References
- SPIN 2017-01, subsection 6.2.3
- ITPIN 2017-02