Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/circl/compliance

Legal, procedural and policies document templates for operating an IRT
https://github.com/circl/compliance

csirt-activities gdpr incident-response legal privacy privacy-notice

Last synced: 27 days ago
JSON representation

Legal, procedural and policies document templates for operating an IRT

Host: GitHub
URL: https://github.com/circl/compliance
Owner: CIRCL
License: agpl-3.0
Created: 2018-04-11T07:34:04.000Z (almost 7 years ago)
Default Branch: master
Last Pushed: 2024-03-15T06:15:29.000Z (11 months ago)
Last Synced: 2025-01-14T20:20:26.915Z (29 days ago)
Topics: csirt-activities, gdpr, incident-response, legal, privacy, privacy-notice
Size: 2.38 MB
Stars: 63
Watchers: 14
Forks: 13
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # legal compliance and CSIRT activities

This repository contains information and materials to support CSIRT activities and especially regarding legal compliance.

## GDPR and privacy-related activities for CSIRTs

- [JSON Schema for GDPR records of processing activities](https://github.com/CIRCL/compliance/blob/master/gdpr/json-schema/processing-activities-records-schema.json)

- [Processing activity - an example with PGP Keyserver service](https://github.com/CIRCL/compliance/blob/master/gdpr/json-schema/processing-activities-records-example.json)

### Slides

- [Slides - CSIRT and GDPR workshop 7th May 2018](gdpr/workshop-materials/)

### FAQ

- [General FAQ](gdpr/workshop-materials/FAQ.md)

### Privacy notices for CSIRT services

- [Privacy notice for OpenPGP keyserver](gdpr/notice-template/privacy_notice_openpgpkeyserver.md)

- [Generic Privacy notice - CIRCL](https://www.circl.lu/privacy/) - [privacy notice in Markdown format](gdpr/notice-template/privacy.md) reusable under the terms of the Creative Common Attribution 4.0 International (CC BY 4.0) license.

### Additional documents

#### MISP and information sharing

- [MISP - Information sharing and cooperation enabled by GDPR](https://www.misp-project.org/compliance/GDPR/)

- [MISP - How MISP enables stakeholders identified by the NISD to perform key activities](https://www.misp-project.org/compliance/NISD/)

#### Analysis Information Leak framework (AIL) and MISP

- [AIL information leaks analysis and the GDPR in the context of collection, analysis and sharing information leaks](./gdpr/articles/information-leaks-analysis-and-gdpr.md) - [PDF version](https://www.circl.lu/assets/files/information-leaks-analysis-and-gdpr.pdf)

## CSIRT tooling

- [CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools](https://github.com/CIRCL/compliance/blob/master/csirt-tooling-best-practices/index.md)

## Acknowledgement

This work is co-financed by the European Union under the CEF grant 2016-LU-IA-0098 and [CIRCL](https://www.circl.lu/). Thanks to all the contributors who helped by providing feedback, issues and documents.