[Code of Federal Regulations]
[Title 36, Volume 3]
[Revised as of July 1, 2008]
From the U.S. Government Printing Office via GPO Access
[CITE: 36CFR1234.28]

[Page 897-898]
 
              TITLE 36--PARKS, FORESTS, AND PUBLIC PROPERTY
 
        CHAPTER XII--NATIONAL ARCHIVES AND RECORDS ADMINISTRATION
 
PART 1234_ELECTRONIC RECORDS MANAGEMENT--Table of Contents
 
Subpart C_Standards for the Creation, Use, Preservation, and Disposition 
                          of Electronic Records
 
Sec. 1234.28  Security of electronic records.

    Agencies shall implement and maintain an effective records security 
program that incorporates the following:

[[Page 898]]

    (a) Ensures that only authorized personnel have access to electronic 
records.
    (b) Provides for backup and recovery of records to protect against 
information loss.
    (c) Ensures that appropriate agency personnel are trained to 
safeguard sensitive or classified electronic records.
    (d) Minimizes the risk of unauthorized alteration or erasure of 
electronic records.
    (e) Ensures that electronic records security is included in computer 
systems security plans prepared pursuant to the Computer Security Act of 
1987 (40 U.S.C. 759 note).

[55 FR 19218, May 8, 1990. Redesignated at 60 FR 44641, Aug. 28, 1995]