ISO IEC 27050-4:2021 pdf download – Information technology — Electronic discovery — Part 4: Technical readiness.
1 Scope This document provides guidance on the ways an organization can plan and prepare for, and implement, electronic discovery from the perspective of both technology and processes. This document provides guidance on proactive measures that can help enable effective and appropriate electronic discovery and processes. This document is relevant to both non-technical and technical personnel involved in some or all of the electronic discovery activities. 2 Normative references The following documents are referred to in the text in such a way that some or all of their content constitutes requirements of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 22123-1, Information technology — Cloud computing — Vocabulary ISO/IEC 27000, Information technology — Security techniques — Information security management systems — Overview and vocabulary ISO/IEC 27050-1:2019, Information technology — Electronic discovery — Part 1: Overview and concepts 3 Terms and definitions For the purposes of this document, the terms and definitions given in ISO/IEC 27000, ISO/IEC 27050-1, and ISO/IEC 22123-1 and the following apply. ISO and IEC maintain terminological databases for use in standardization at the following addresses: — ISO Online browsing platform: available at http://www.iso .org .obp — IEC Electropedia: available at http://www.electropedia .org/ 3.1 compliance obligations legal requirements and other requirements legal requirements that an organization has to comply with and other requirements that an organization has to or chooses to comply with Note 1 to entry: Compliance obligations can arise from mandatory requirements, such as applicable laws and regulations, or voluntary commitments, such as organizational and industry standards, contractual relationships, codes of practice and agreements with community groups or non-governmental organizations. [SOURCE: ISO 14001:2015, 3.2.9, modified — Note 1 to entry has been removed and Note 2 to entry renumbered.]
The ISO/IEC 27050 series addresses these challenges by: — promoting common understanding of various concepts and terminology for electronic discovery; — articulating objectives and risks inherent in the steps in the electronic discovery process; — encouraging practical and cost-effective discovery by those tasked with managing ESI through the process; — providing guidance and best practices for those responsible for delivering electronic discovery projects (e.g. legal practitioners, services providers, independent experts, courts, and any other parties engaged in the process);
— identifying competency areas for those involved in electronic discovery; — promoting the proactive use of technology to reduce costs and risks, while increasing efficiencies throughout the discovery process; — suggesting ways to avoid inadvertent disclosures of potentially privileged, confidential, or sensitive ESI. The overriding objective is to help organizations meet their electronic discovery goals (e.g. legal obligations, business objectives, regulatory requirements).