This Tactical Tier control triangle seeks to design and structure the data components of an information system to meet specific solution requirements, ensuring alignment with the organisation's overall Information Architecture and Design principles.

This control rolls down from the Deliver Solution Domain and cascades into: 2.1.1.1-Data Model, 2.1.1.2-Data Flow, and 2.1.1.3-Data Integration controls.

---

Control Mappings:
Cobit:2019 ➡️ APO14; APO14.01; APO14.04; BAI02; BAI02.01
PCI:DSSv4.01 ➡️ 3; 3.1; 3.3.1; 3.3.1.1; 3.3.1.2; 3.3.1.3; 3.3.2; 3.5; 3.5.1
GDPR:2024 ➡️ Art.5; Art.7; Art.8; Art.9; Art.10; Art.11; Art.12; Art.13; Art.14; Art.15; Art.16; Art.17; Art.25; Art.30; Art.30; Art.30; Art.35
ISO38500:2024 ➡️ 5.9.1
ITIL:v4 ➡️ SM16; SM27
CIS:v8 ➡️ Data Protection; Establish and Maintain a Data Management Process; Establish and Maintain a Data Classification Scheme; Secure Configuration of Enterprise Assets and Software; Security Awareness and Skills Training; Train Workforce on Data Handling Best Practices