You are on page 1of 10



Disclosure to Promote the Right To Information
Whereas the Parliament of India has set out to provide a practical regime of right to
information for citizens to secure access to information under the control of public authorities,
in order to promote transparency and accountability in the working of every public authority,
and whereas the attached publication of the Bureau of Indian Standards is of particular interest
to the public, particularly disadvantaged communities and those engaged in the pursuit of
education and knowledge, the attached public safety standard is made available to promote the
timely dissemination of this information in an accurate manner to the public.
“जान1 का अ+धकार, जी1 का अ+धकार”

“प0रा1 को छोड न' 5 तरफ”

“The Right to Information, The Right to Live”

“Step Out From the Old to the New”

Mazdoor Kisan Shakti Sangathan

Jawaharlal Nehru

IS/ISO/PAS 17002 (2004): Conformity assessment
confidentiality principles and requirements [MSD 10: Social

“!ान $ एक न' भारत का +नम-ण”
Satyanarayan Gangaram Pitroda

“Invent a New India Using Knowledge”

“!ान एक ऐसा खजाना > जो कभी च0राया नहB जा सकता ह”


“Knowledge is such a treasure which cannot be stolen”




1987. however. Certain conventions are. not identical to those used in Indian Standards. The text of lSO/PAS Standard has been approved as suitable for publication as an Indian Standard without deviations.) has been used as a decimal marker while in’ Indian Standards.National Mirror Committee of CASCO. Attention is particularly drawn to the following: a) Wherever the words ‘International ‘Indian Standard’. use a point (. Bureau of Indian Standards under Rule 8(3)C of BE Ru/es. they should be read as b) Comma (. Standard’ appear referring to this standard. the current practice is to . IRD 1 NATIONAL FOREWORD This Indian Standard which is identical with lSO/PAS 17002:2004 ‘Conformity assessment — Confidentiality — Principles and requirements’ issued by the International Organization for Standardization (ISO) was adopted by the Bureau of Indian Standards on the recommendation of the NationahMirror Committee of CASCO and approval of the Director General.) as the decimal marker.

lSO/CASCO approved the formation of Working Group 23. each of the common elements will have requirements related to it grouped under one or more of the headings shown above. Requirements should be grouped under one or more of the following headings: a) General requirements. Common elements in /SO//EC Standards for conformity assessment activities. At the end of three years after the date of publication. The working group has identified several common elements. c) Resource requirements. Subsequent to this request. As such. lSO/CASCO has adopted a common structure for the presentation of requirements. This Publicly Available Specification (PAS) addresses the “confidentiality” element that occurs in many of the lSO/lEC Guides and International Standards on conformity assessment. — confidentiality. including among others — impartiality. — management systems. Standards on conformity This PAS is intended to apply to the drafling of documents on conformity assessment by lSO/CASCO. e) Management system requirements. it is expected this PAS will be withdrawn and its contents incorporated as appropriate in relevant lSO/CASCO normative and guidance documents. b) Structural requirements. The PAS covers the agreed principles that give substance to the element of confidentiality. to undertake this task. and also provides requirements clauses intended to be included in future lSO/lEC International assessment. This PAS is not intended to become a future International Standard. d) Process requirements. The requirements to be inserted into future lSO/CASCO documents that cover the common element of “confidentiality are detailed in Clause 5. — complaints and appeals. .lS/lSO/PAS 17002:2004 Introduction In 2001 the ISO Council asked its policy committee on conformity assessment (lSO/CASCO) to study and prepare a group of common elements for application in future ISO documents on conformity assessment. Clause 4 (Principles) contains statements that are intended to orientate lSO/CASCO working groups in their task of creating requirements to address confidentiality in their documents.

For dated references. The use of the term “body” in this PAS means either an accreditation body or a conformity assessment body NOTE as defined in lSO/lEC 17000. only the edition cited applies. 4. 2 Normative references The following referenced documents are indispensable for the application of this document. the body needs to provide confidence that confidential information will not be disclosed.2 All organizations and individuals have the right to have protected any proprietary information that they provide.1 To gain access to the information needed to conduct effective conformity assessment activities. the latest edition of the referenced document (including any amendments) applies.3 Managing the balance between confidentiality and public disclosure related requirements affects stakeholders’ trust and their perception of value in the conformity assessment activities being performed. 4. NOTE It is intended that there will be a separate PAS coveringthe commonelement of public disclosure. the terms and definitions given in lSO/lEC 17000 apply. lSO/lEC 17000. 4 Principles of confidentiality 4. Conformity assessment — Vocabulary and general principles 3 Terms and definitions For the purposes of this document. For undated references. .lS/lSO/PAS 17002:2004 Indian Standard CONFORMITY ASSESSMENT — CONFIDENTIALITY PRINCIPLES AND REQUIREMENTS 1 — Scope This Publicly Available Specification (PAS) contains principles and requirements confidentiality as it relates to conformity assessment. for the element of It is an internal tool for use in the ISO standards development process by lSO/CASCO working groups when addressing the element of confidentiality in the preparation of their documents. This Publicly Available Specification is not a stand-alone normative document to be used directly in conformity assessment activities.

g. or when agreed between the body and the client (e. Except for information that the client makes publicly available. including any committee members. through legally enforceable commitments. without modification. documents. records) and objects of conformity assessment (e. the phrase “Conformity assessment activities shall be undertaken impartially”. 2 .g. By providing for these different levels of specificity. regulators) shall be treated as confidential. or individuals acting on the body’s behalf.3. unless prohibited by law. the client or in~vidual concerned shall. b) When the body is required by law or authorized by contractual arrangements to release confidential information. b) Recommended: these are drafted requirements that working groups should use if they wish to have a greater degree of specification.g. For example. 5. The body shall inform the client. all other information is considered proprietary information and shall be regarded as confidential.g. and at the same time maintains some flexibility for specific wording by individual lSO/CASCO working groups. 5. except as required by law. a) The body shall be responsible.3 5. may be substituted more specifically with “Management system certification activities shall be undertaken impartially”.2 Recommended requirements The body shall have available and use facilities for the secure handling (e. of the information it intends to place in the public domain. 5. personnel of external bodies. be notified of the information provided. shall keep confidential all information obtained or created during the performance of the body’s conformity assessment activities. ISOIGASGO working group. Modification is permissible. in advance. record destruction) of confidential information (e. product samples).3. for the management of all information obtained or created during the performance of conformity assessment activities.1 for confidentiality General In developing this PAS it was recognised that there are varying degrees of specificity that lSO/CASCO working groups should consider. the PAS achieves the lSO/CASCO intent to have an agreed statement on elements that are common to all conformity assessment activities. for the purpose of responding to complaints).1 Resource Obligatory requirements requirements Personnel.2 General requirements 9 The following requirements are obligatory. except for substitution of more specific terms. complainant. As a result the requirements in this clause are categorized into three levels of specificity as follows. postage. contractors. c) Suggested: these are considerations that could be taken into account in the drafting of requirements by the. Justification is required from LSO/CASCO working groups that do not use these requirements when dealing with the relevant common element. c) Information about the client obtained from sources other than the client (e.lS/lSO/PAS 5 17002:2004 Requirements 5. e-mailing. a) Obligatory: these are specific drafted requirements that shall be used by lSO/CASCO working groups where the element has to be addressed.g.

Model Code for the Protection of Pmonal Information 17002:2004 .lS/lSO/PAS Bibliography [1] CANICSA-Q830-03.

-.P. Printed at Shri Gane. Scheme KOLKATA 700054 Shah Zafar Marg 2323’7617 { 23233841 Vll Regional Central Offices : Eastern : Telephones Manak Bhavan. This Indian Standard has been developed Amendments Amend No. THIRUVANANTHAPURAM. RAJKOT. BIS. New Delhi 110002 Telephones :23230131. Road.. GtJWAHAT1. BHOPAL. if the review indicates that changes are needed. IV Cross Road.T. NAGPUR. PATNA.28327858 { 28327891. Marol. KANPUR. a standard alongwith amendments is reaffirmed when such review indicates that no changes are needed. Enquiries relating to copyright be addressed to the Director (Publications). - — -1 Standards BIS is a statutory institution established under the Bureau of /rrdian Standards Act. CHENNAI Western : Manakalaya. 9 Bahadur Shah Zafar Marg. 1986 to promote harmonious development of the activities of standardization.I.I. VISAKHAPATNAM. CHANDIGARH Southern : C.— J-”-- —— Bureau of Indian ____ —. FARIDABAD. LUCKNOW. . BANGALORE. No part of the these publications may be reproduced in any form without the prior permission in writing of BIS.23378561 { 23378626. from Dot: Issued No.. BHUBANESHWAR. 23239402 Website : www. of necessary details. type or grade Sector 34-A. Kankurgachi Northern : SCO 335-336./. JAIPUR. HYDERABAD. E9 MlDC. IRD 1 (005). Since Publication Date of Issue BUREAU ? Text Affected OF INDIAN STANDARDS Headquarters: Manak Bhavan. Campus. V. PUNE. marking and quality certification of goods and attending to connected matters in the country. DeI~ -. bis.28327892 A Branches : AHMEDABAD. Standards are also reviewed periodically.I. 9 Bahadur NEW DELHI 110002 1/14 C. Review of Indian Standards Amendments are issued to standards as the need arises on the basis of comments.$h Associates.23379120 2603843 { 2609285 22541216. it is taken up for revision. PARWANOO. COIMBATORE.&.— .22542315 28329295. in the course of implementing the standard. such as symbols and sizes. Users of Indian Standards should ascertain that they are in possession of the latest amendments or edition by referring to the latest issue of ‘BIS Catalogue’ and ‘Standards: Monthly Additions’. GHAZIABAD.T. Copyright BIS has the copyright of all its publications.22541442 { 22542519. 23233375. Andheri MUMBAI 400093 160022 600113 (East) 23378499. This does not preclude the free use.