Compliance Justification Document (Equifax MDL and regulators (2020))¶
Purpose¶
This mapping document shows how implemented controls satisfy obligations and expectations implicated by Compliance Justification Document (Equifax MDL and regulators (2020)). It is structured for audit and legal review, so each requirement is tied to implementation rationale, ownership, and verifiable artifacts rather than policy statements alone.
Control-to-requirement mapping (illustrative)¶
| Control domain | Source / obligation | Example evidence |
|---|---|---|
| Patch management | FTC order | Change records, emergency SLA reports, scan results |
| Assessments | FTC order | Third-party assessment reports, remediation tracking |
Document-type guide: compliance-justification-document
Writing tips: Writing best practices