iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CEN

EN 15713:2023

(Main)

Secure destruction of confidential and sensitive material - Code of practice

Secure destruction of confidential and sensitive material - Code of practice

This document provides recommendations and requirements for the procedures, processes and performance monitoring to be implemented for the management and control of the physical destruction of confidential and sensitive material to ensure that such material is disposed of securely and safely.
This document can be referenced by anyone who processes such material on behalf of others and covers the following scenarios:
-   on site - using mobile equipment at the location of use (destruction equipment is brought to the confidential or sensitive material);
-   off site - transport followed by destruction using equipment at a destruction facility (the confidential or sensitive material is brought to the destruction equipment, such as used at a dedicated external facility operated by a service provider);
-   use of equipment at the Data Controller’s location (confidential or sensitive material and destruction equipment co-located, such as a shredder in a building occupied by a client or clients).
Destruction by erasure (e.g. crypto erasure, data overwriting, degaussing or other forms of magnetic/electronic erasure) is not covered in this document.

Sichere Vernichtung von vertraulichen Unterlagen - Verfahrensregeln

Dieses Dokument gibt Empfehlungen und Anforderungen für die Verfahren, Prozesse und Leistungsüberwachung, die für die Durchführung und Überwachung der physischen Vernichtung von vertraulichen und sensiblen Unterlagen eingeführt werden, um sicherzustellen, dass diese Unterlagen zuverlässig und sicher entsorgt werden.
Dieses Dokument kann von jedem, der solche Unterlagen im Auftrag anderer verarbeitet, herangezogen werden und es behandelt die folgenden Szenarien:
   vor Ort – mithilfe mobiler Ausrüstung am Ort der Verwendung (Vernichtungseinrichtung wird zu den vertraulichen oder sensiblen Unterlagen gebracht);
   an einem anderen Ort – Transport und anschließende Vernichtung mithilfe von Ausrüstungen in einer Vernichtungsanlage (die vertraulichen und sensiblen Unterlagen werden zur Vernichtungseinrichtung gebracht, wie es in einer von einem Dienstleister betriebenen spezialisierten externen Einrichtung üblich ist);
   Einsatz von Ausrüstung am Standort des Datenbeauftragten (vertrauliche und sensible Unterlagen sowie Vernichtungseinrichtung befinden sich an einem Ort, wie z. B. ein Schredder in einem von einem oder mehreren Auftraggebern belegten Gebäude).
Die Vernichtung durch Löschung (z. B. kryptographische Löschung, Überschreiben von Daten, Entmagnetisierung oder andere Arten der magnetischen/elektronischen Löschung) wird nicht in diesem Dokument behandelt.

Destruction sécurisée de documents confidentiels - Code d'usages

Le présent document fournit des recommandations et des exigences concernant les procédures, les processus et le suivi des performances à mettre en œuvre pour la gestion et le contrôle de la destruction physique de documents ou matériels confidentiels et sensibles afin d'en assurer une élimination fiable et sécurisée.
Le présent document peut servir de référence à toute personne ayant à traiter ce type de document ou matériel pour le compte d'autrui, et couvre les scénarios suivants :
-   sur site - recours à un équipement mobile sur le lieu d'utilisation (l'équipement de destruction est amené à l'endroit où se trouvent les documents ou matériels confidentiels ou sensibles) ;
-   hors site - transport suivi d'une destruction dans un équipement d'une installation de destruction (les documents ou matériels confidentiels ou sensibles sont amenés jusqu'à l'équipement de destruction, tel qu'il est utilisé dans une installation externe dédiée, exploitée par un prestataire de services) ;
-   recours à des équipements sur le site du responsable du traitement des données (documents ou matériels confidentiels ou sensibles et équipements de destruction regroupés sur un même site, par exemple, déchiqueteuse installée dans un bâtiment occupé par un ou plusieurs clients).
La destruction par effacement (par exemple effacement cryptographique, écrasement des données, démagnétisation ou d'autres formes d'effacement magnétique/électronique) n'est pas traitée dans le présent document.

Varno uničevanje zaupnega in občutljivega gradiva - Pravila ravnanja

Ta dokument podaja priporočila in zahteve za postopke, procese in spremljanje učinkovitosti, ki veljajo za vodstvo, in za nadzor mehanskega uničevanja ter s tem zanesljivega in varnega odstranjevanja zaupnega in občutljivega gradiva.
Na ta dokument se lahko sklicuje vsakdo, ki obdeluje tovrstna gradiva za lastne potrebe ali v imenu drugih, zajema pa naslednje scenarije:
-   na kraju samem – uporaba mobilne opreme na kraju uporabe (oprema za uničenje je pripeljana na kraj zaupnega ali občutljivega gradiva);
-   zunaj kraja – prevoz po uničenju, pri čemer se uporablja oprema za uničenje (zaupno ali občutljivo gradivo je pripeljano k opremi za uničenje, če se npr. uporablja v namenskem zunanjem objektu, ki ga upravlja ponudnik storitve);
-   uporaba statične opreme na kraju uporabe (zaupno ali občutljivo gradivo in oprema za uničenje sta na istem kraju, npr. uničevalnik dokumentov v stavbi stranke ali strank).
Uničevanje z brisanjem v tem dokumentu ni zajeto.

General Information

Status
Published
Publication Date
05-Sep-2023
ICS
13.310 - Protection against crime
Technical Committee
CEN/TC 263 - Secure storage of cash, valuables and data media
Drafting Committee
CEN/TC 263/WG 5 - Secure destruction of confidential material
Current Stage
6060 - Definitive text made available (DAV) - Publishing
Start Date
06-Sep-2023
Due Date
18-Apr-2022
Completion Date
06-Sep-2023
Ref Project
SIST EN 15713:2023 - Secure destruction of confidential and sensitive material - Code of practice

Relations

Replaces
EN 15713:2009 - Secure destruction of confidential material - Code of practice
Effective Date
06-Nov-2019

Buy Standard

EN 15713:2023EN 15713:2023
PreviousNext
Standard
EN 15713:2023
English language
51 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST EN 15713:2023
01-december-2023
Varno uničevanje zaupnega in občutljivega gradiva - Pravila ravnanja
Secure destruction of confidential and sensitive material - Code of practice
Sichere Vernichtung von vertraulichen Unterlagen - Verfahrensregeln
Destruction sécurisée de documents confidentiels - Code d'usages
Ta slovenski standard je istoveten z: EN 15713:2023
ICS:
13.310 Varstvo pred kriminalom Protection against crime
SIST EN 15713:2023 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 15713:2023

---------------------- Page: 2 ----------------------
SIST EN 15713:2023


EN 15713
EUROPEAN STANDARD

NORME EUROPÉENNE

September 2023
EUROPÄISCHE NORM
ICS 13.310 Supersedes EN 15713:2009
English Version

Secure destruction of confidential and sensitive material -
Code of practice
Destruction sécurisée de documents confidentiels - Sichere Vernichtung von vertraulichen Unterlagen -
Code d'usages Verfahrensregeln
This European Standard was approved by CEN on 24 April 2023.

CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this
European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references
concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CEN
member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by
translation under the responsibility of a CEN member into its own language and notified to the CEN-CENELEC Management
Centre has the same status as the official versions.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway,
Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Türkiye and
United Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2023 CEN All rights of exploitation in any form and by any means reserved Ref. No. EN 15713:2023 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------
SIST EN 15713:2023
EN 15713:2023 (E)
Contents Page
European foreword . 4
1 Scope . 5
2 Normative references . 5
3 Terms, definitions and abbreviations . 6
3.1 Terms and definitions . 6
3.2 Abbreviations . 9
4 Protection class . 10
4.1 General . 10
4.2 Determination of the protection class . 10
5 Determination of security level . 11
6 Increasing the security level . 11
7 Destruction equipment . 12
7.1 General . 12
7.2 Use of destruction equipment . 12
7.3 Operating instructions .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CEN
EN 14450:2017+A1:2023(Main)
Secure storage units - Requirements, classification and methods of test for resistance to burglary - Secure cabinets
SIST EN 14450:2018+A1:2024

This document establishes the basis for testing and classifying secure cabinets.
The standard covers products meant for purposes where the security resistance required is less than that measured by EN 1143-1. Normally these products are used in lower risk situations.

  • Standard
    18 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 1300:2023(Main)
Secure storage units - Classification for high security locks according to their resistance to unauthorized opening
SIST EN 1300:2023

This document specifies requirements for high security locks (HSL) for reliability, resistance to burglary and manipulation with methods of testing. It also provides a scheme for classifying HSL in accordance with their assessed resistance to burglary and unauthorized opening.
It is applicable to mechanical and electronic HSL. For electronic locks used in a distributed system, see EN 17646 for further information.
The following features can be included as optional subjects but they are not mandatory:
a)   recognized code for preventing code altering and/or enabling/disabling parallel codes;
b)   recognized code for disabling time set up;
c)   integration of alarm components or functions;
d)   resistance to attacks with acids;
e)   resistance to X-rays;
f)   resistance to explosives;
g)   time functions.

  • Standard
    58 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17646:2022(Main)
Secure storage units - Classification for high security locks according to their resistance to unauthorized opening - Distributed systems
SIST EN 17646:2022

This document is applicable to Distributed Systems (DS), i.e. high security locks with components which have a wired or wireless connection via a transmission system in order to execute fixed operating conditions using different individually fixed access possibilities.
Products which are to be tested on the basis of this document comply with the generally recognized state of the art at the time of testing. Due to the short innovation cycles in the field of electronic and, in particular, information technology applications, the technical possibilities available at the time of product development should also be taken into account during implementation.
Distributed systems can be used, for example, to operate high security locks of secure storage units (safes and strongrooms).
High security locks (HSL) are used in DS as locking unit.
This document does not apply for stand-alone HSL, which are not part of a distributed system. For these stand-alone HSL EN 1300 is applicable only.
The document will be revised with a frequency of 3 years as the research in the area of cryptography and relevant attacks evolve with high speed as well as the referenced standards.

  • Standard
    28 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 1047-1:2019(Main)
Secure storage units - Classification and methods of test for resistance to fire - Part 1: Data cabinets and data inserts
SIST EN 1047-1:2019

This document specifies requirements for fire resisting data cabinets and diskette inserts.
Two methods of test are specified to determine the ability of fire resisting data cabinets to protect temperature and humidity sensitive contents from the effects of fire: a fire endurance test and a fire shock and impact test. Two levels of fire severity (S 60 and S 120) based upon time of fire exposure; and three protection classes (P, D and DIS) are specified using the maximum temperature increases and humidity values permitted within the storage space of the data cabinet.
Diskette inserts (DI 60 P/DIS and DI 120 P/DIS) are installed in data cabinets of protection class S 60 P or S 120 P, respectively, and subjected to a fire endurance test (see 5.1.2).
Requirements are also specified for test specimens, the technical documentation for the test specimen, correlation of the test specimen with the technical documentation, preparation for type testing and test procedures.
A scheme to classify the fire resisting data cabinets and diskette inserts from the test results is also given (see Table 1).
Diskette inserts are only installed in data cabinets having the same design as the series of protection class S 60 P and S 120 P, respectively, in which the insert has been tested in using methods defined in 5.1.2. Where several inserts are installed, they are built in one beside the other or one above the other from bottom to top, respectively. The volume and total height of the installed inserts do not exceed 50 % of the total internal volume or 50 % of the internal height, respectively, of the data cabinets into which they are installed. The dimensions of the insert can be adapted by increasing the width and depth to the corresponding dimensions of the data cabinets. A reduction of these dimensions as well as a change of the height is only admitted within the specified tolerance.
The temperature increases during type-tests on data cabinets and diskette inserts will be considered in deciding the permitted diskette insert installations. For a permitted installation, the temperature increase of the intended data cabinet ( ) does not exceed the temperature increase of the tested data cabinet ( ) in which the diskette insert has been type-tested by more than the difference between the maximum value for the diskette insert ( ) and the maximum admissible temperature increase (30 K), i.e   (See example in Annex B).
A description of the installation of the diskette inserts can be given in the technical documentation of the manufacturer.

  • Standard
    26 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 15659:2019(Main)
Secure storage units - Classification and methods of test for resistance to fire - Light fire storage units
SIST EN 15659:2019

This document specifies requirements for light fire storage units providing protection against fire.
The method of test is specified to determine the ability of light fire storage units to protect paper media from the effects of fire. Two levels of fire exposure periods (LFS 30 and LFS 60) are specified using the maximum temperature increase permitted within the storage space of the light fire storage unit.
Protection after the fire exposure of 30 min (LFS 30) or 60 min (LFS 60) is not ensured by this document, but by European Standard EN 1047-1. Requirements are also specified for the test specimen, the technical documentation for the test specimen, correlation of the test specimen with the technical documentation, preparation for type testing and test procedures.
A scheme to classify the light fire storage units from the test results is also given (see Table 1).

  • Standard
    17 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 1143-1:2019(Main)
Secure storage units - Requirements, classification and methods of test for resistance to burglary - Part 1: Safes, ATM safes, strongroom doors and strongrooms
SIST EN 1143-1:2019

This European Standard establishes the basis for testing and classifying free-standing safes, built-in safes (floor and wall), ATM safes and ATM bases, strongroom doors and strongrooms (with or without a door) according to their burglary resistance. This European Standard does not cover testing and classifying Deposit Systems and ATM systems.

  • Standard
    54 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 1047-2:2019(Main)
Secure storage units - Classification and methods of test for resistance to fire - Part 2: Data rooms and data container
SIST EN 1047-2:2019

This part of the European Standard EN 1047 specifies requirements for data rooms and data containers. It includes a method of test for the determination of the ability of data rooms and data containers to protect temperature and humidity sensitive data media (see 3.5) and hardware systems (see 3.6) from the effects of fire. A test method for measuring the resistance to mechanical stress (impact test) provided by data rooms type B and data containers is also specified.
Requirements are also specified for test specimens, the technical documentation of the test specimens, materials specimens, physical fittings, the correlation of test specimens with the technical documentation and the preparation for type testing, as test procedures as well as the series production.
In addition, a scheme to classify data rooms and data containers from the test results is given (see Table 1).
As well as providing protection against fire, correctly installed data rooms and data containers offer a defined protection against impacts caused by failure during fire of components and objects external to the data room or data container.
Data rooms and data containers having the same design, protection and construction features (type and thickness of construction and protective materials, rebate geometry, lockings, doors, etc.) will only be given the same protection classification as that of the test specimen if the tolerances are within the ranges specified in Clause 7.
NOTE   This European Standard does not regulate the use of data rooms in the meaning of the building laws of the respective countries. In the construction of data rooms, it is advised to consider the respective national requirements.

  • Standard
    35 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 1143-2:2014(Main)
Secure storage units - Requirements, classification and methods of tests for resistance to burglary - Part 2: Deposit systems
SIST EN 1143-2:2014

This European Standard specifies requirements and tests methods for deposit systems, and classifies the systems according to their burglary resistance and their resistance to the theft of deposits.
This European Standard comprises two types of deposit system:
-   Night safes which provide depositing services for the customers of financial institutions without giving access to the content of the night safe.
-   Deposit safes which enable the personnel of a company to place money or valuables in safe custody without giving access to the content of the deposit safe. The installation condition for deposit safe according to this European Standard is that the depositing functions are installed inside the premises of the company and are only disposable for the personnel of the company.
NOTE   Parts of a deposit system are a receiving unit, an input unit and in some cases, a chute.
This European Standard includes design requirements for deposit systems controlled by programmable controllers and for the software for these. Controller hardware testing is restricted to mechanical or electromechanical attacks of electric motors, sensors, coils and similar devices; but software testing as attempts to influence controller software or controller hardware is not part of this standard.
Deposit systems may have devices for functions such as user identification and/or counting and registration of money. Tests of and requirements for classification of such functions are not included.
This European Standard does not cover protection of persons using the deposit system or the prevention of fraud committed by operators of the deposit system.

  • Standard
    50 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
FprEN 1143-2(Main)
Secure storage units - Requirements, classification and methods of tests for resistance to burglary - Part 2: Deposit systems
kSIST FprEN 1143-2:2024

This document specifies requirements and tests methods for deposit systems, and classifies the systems according to their burglary resistance and their resistance to the theft of deposits.
This document comprises two types of deposit system:
—   Night safes which provide depositing services for the customers of financial institutions without giving access to the content of the night safe.
—   Deposit safes which enable the personnel of a company to place money or valuables in safe custody without giving access to the content of the deposit safe. The installation condition for deposit safe according to this document is that the depositing functions are installed inside the premises of the company and are only disposable for the personnel of the company.
NOTE   Parts of a deposit system are a receiving unit, an input unit and in some cases, a chute.
This document includes design requirements for deposit systems controlled by programmable controllers and for the software for these. Controller hardware testing is restricted to mechanical or electromechanical attacks of electric motors, sensors, coils and similar devices; but software testing as attempts to influence controller software or controller hardware is not part of this document.
Deposit systems can have devices for functions such as user identification and/or counting and registration of money. Tests of and requirements for classification of such functions are not included.
This document does not cover protection of persons using the deposit system or the prevention of fraud committed by operators of the deposit system.

  • Draft
    54 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 14450:2017/FprA1(Amendment)
Secure storage units - Requirements, classification and methods of test for resistance to burglary - Secure cabinets
SIST EN 14450:2018/kprA1:2023

This document establishes the basis for testing and classifying secure safe cabinets.
The standard covers products meant for purposes where the security resistance required is less than that measured by EN 1143-1. Normally these products are used in lower risk situations.

  • Draft
    6 pages
    English language
    sale 10% off
    e-Library read for
    1 day