DSP-15: Is authorization from data owners obtained, and the associated risk managed,
before replicating or using production data in non-production environments?
Control implemented
Control ownership
Description
Obtain authorization from data owners, and manage associated risk
before replicating or using production data in non-production environments.