[Code of Federal Regulations] [Title 36, Volume 3] [Revised as of July 1, 2008] From the U.S. Government Printing Office via GPO Access [CITE: 36CFR1234.28] [Page 897-898] TITLE 36--PARKS, FORESTS, AND PUBLIC PROPERTY CHAPTER XII--NATIONAL ARCHIVES AND RECORDS ADMINISTRATION PART 1234_ELECTRONIC RECORDS MANAGEMENT--Table of Contents Subpart C_Standards for the Creation, Use, Preservation, and Disposition of Electronic Records Sec. 1234.28 Security of electronic records. Agencies shall implement and maintain an effective records security program that incorporates the following: [[Page 898]] (a) Ensures that only authorized personnel have access to electronic records. (b) Provides for backup and recovery of records to protect against information loss. (c) Ensures that appropriate agency personnel are trained to safeguard sensitive or classified electronic records. (d) Minimizes the risk of unauthorized alteration or erasure of electronic records. (e) Ensures that electronic records security is included in computer systems security plans prepared pursuant to the Computer Security Act of 1987 (40 U.S.C. 759 note). [55 FR 19218, May 8, 1990. Redesignated at 60 FR 44641, Aug. 28, 1995]