This guideline aims to provide information and guidance to applicants and accredited persons to assist them meeting the insurance obligation and is supplementary to the CDR Accreditation Guidelines and the CDR Rules. This guideline contains general guidance information only, and provides no views on the adequacy of any particular insurance policies or arrangements.
An accredited person must take the steps outlined at Schedule 2 of the CDR Rules to satisfy the information security obligation. These steps and controls are the minimum requirements that an entity must meet in order to satisfy the information security criterion to hold accreditation.
Sample applications and forms
Sample applications and forms relating to accreditation