SFS Suomen Standardit

 

Article 20 GDPR and Article 4 and 5 the proposed FIDA Regulation require the data access and portability of customer data. To support this demand CEN/TC 445 will organise the standardisation project with its Working Group 1 in which the following European standardisation deliverable will be developed. European Standard (EN) for the semantic specification of the interfaces The scope of this EN for customer (natural or legal person) data access and portability in the insurance sector should be based on the insurance-specific part of the proposed FIDA Regulation and therefore should contain: • Semantic specifications for the processes to support the data access and portability. These specifications define on the business level the functions and the behaviour for the following process interfaces: - Request of the customer to the data holder for an actual transfer of the customer data (Article 4 FIDA). - Transfer of the requested customer data from the data holder to the requesting customer (Article 4 FIDA). - Request of a data user to a data holder for an actual transfer of customer data under a permission of the customer (Article 5 FIDA). - Transfer of the requested customer data from the data holder to the requesting data user (Article 5 FIDA). • Sematic specifications for the customer data to be transferred by the above processes. The scope of the customer data will be limited to the insurance-specific part of the FIDA proposal defined in the Article 2 (1) and Article 3 (3) of FIDA. These specifications define on the business level each element of the customer data with identification, name, precise definition, and value type (text, number, amount, quantity, percentage, date, etc.). The composition of these data elements forms a semantic data model for the insurance-specific customer data. The data model will consist of the following parts: - General data of the policy holder (including address, contact details, profession, payment means, etc.). - General data of the insurance policy (including policy number, insurance product and coverages, insured period, premium amounts, etc.). - Data specific to the consumers’ insured assets which are collected for the purposes of a demands and needs test. - Data depending on class of business, such as - Motor insurance (details about vehicle, usage, drivers), - Property insurance (details about building, household or other objects), - Liability insurance (details about insured persons and their activities), - Accident insurance (details about insured persons and their activities), - Insurance-based investment products (details about insured persons and the savings, investments, pension rights, etc.). The EN specifies the processes and the data model on the semantic level in a syntax-neutral format, independent from its representation in a concrete implementation syntax.

 

This document specifies performance requirements, methods of test, and marking requirements for automatic and open water spray nozzles. This document is not applicable to sprinklers or water mist nozzles. Factors of installation, such as nozzle spacing, design densities, wind and hot gas velocities, are not intended to be addressed by this document.

 

This document specifies construction requirements, performance requirements, test methods and marking requirements for typical types of pipe hangers and associated components. To include but not limited to: clamps, band hangers, clevis hangers, brackets, ceiling flanges, and anchors.

 

This European Standard applies to rope adjustment devices intended for use in rope access systems. It specifies the requirements, test methods, marking and manufacturer’s instructions and information.

 

This document specifies the technical delivery conditions for corrosion-resistant alloy seamless products for casing, tubing, coupling stock and accessory material (including coupling stock and accessory material from bar) for two product specification levels: PSL-1, which is the basis of this document; PSL-2, which provides additional requirements for a product that is intended to be both corrosion and cracking resistant for the environments and qualification method specified in Annex G and in the ISO 15156 series or NACE MR0175. This document contains no provisions relating to the connection of individual lengths of pipe. Demonstration of conformance to ISO 15156-3:2020 or NACE MR0175-2021 of material affected by end sizing, connection manufacture or welding operations is outside the scope of this document. This document contains provisions relating to marking of tubing and casing after threading. This document is applicable to the following five groups of products: a)       group 1, which is composed of stainless alloys with a martensitic or martensitic/ferritic structure; b)       group 2, which is composed of stainless alloys with a ferritic-austenitic structure, such as duplex and super-duplex stainless alloy; c)        group 3, which is composed of stainless alloys with an austenitic structure (iron base); d)       group 4, which is composed of nickel-based alloys with an austenitic structure (nickel base); e)       group 5, which is composed of bar only (Annex F) in age-hardened (AH) nickel-based alloys with austenitic structure.

 

ISO 10519:2015 specifies a spectrometric method for the determination of the chlorophyll content of rapeseed. It is not applicable to the determination of chlorophyll in oils.

 

This document establishes the basic principles for the provision of quality legal interpreting (spoken language interpreting or signed language interpreting) for all parties involved in the use of legal services and specifies the competences of legal interpreters. It also describes the various legal settings and the corresponding modes of interpreting. In this document, interpreting refers to the activity performed by human beings to convey spoken or signed content from one language to another. Interpreting generated by artificial intelligence falls outside the scope of this document.

 

The purpose of this document is to provide guidance on the methods to quantify the amount of personal information and to help estimate how easy it might be to re-identify someone in a dataset subjected to de-identification when it contains information about the characteristics of, actions of, or relationships to, natural persons. This guidance can further help organizations make better decisions for privacy protection and for appropriate use, sharing and exchange of such data. This document is a high level, principles-based advisory standard which sets out terms and concepts that can be referenced by organizations. This document does not provide an estimate of how easy it is to identify someone where additional external data is accessible, nor does it provide a way to define whether data is PII or not.

 

This document specifies methods using sieving for the determination of the quantity of coarse particles of binder present in bituminous emulsions and for the determination of storage stability. WARNING - The use of this document can involve hazardous materials, operations and equipment. This document does not purport to address all of the safety problems associated with its use. It is the responsibility of the user of this document to establish appropriate safety and health practices and to determine the applicability of regulatory limitations prior to use. In addition, for environmental aspects, it is important to limit the quantities of products, solvents and energy sources to reduce the emissions in air and water and the wastes to the minimum required for a valid test realization.

 

This document specifies the general safety, design, construction, and performance requirements and testing of safety, control or regulating devices (hereafter referred to as controls) for burners and appliances burning one or more gaseous fuels or liquid fuels. This document is applicable to controls with declared maximum inlet pressure up to and including 500 kPa and of nominal connection sizes up to and including DN 250.

 

This document provides the overview and concepts of confidential computing. It is applicable to organizations and stakeholders involved in the development, implementation, or use of confidential computing.

 

This document specifies requirements and provides guidance for establishing, implementing, maintaining, reviewing and improving an anti-bribery management system. The system can be stand-alone or can be integrated into an overall management system. This document addresses the following in relation to the organization's activities: — bribery in the public, private and not-for-profit sectors; — bribery by the organization; — bribery by the organization's personnel acting on the organization's behalf or for its benefit; — bribery by the organization's business associates acting on the organization's behalf or for its benefit; — bribery of the organization; — bribery of the organization's personnel in relation to the organization’s activities; — bribery of the organization's business associates in relation to the organization’s activities; — direct and indirect bribery (e.g. a bribe offered or accepted through or by a third party). This document is applicable only to bribery. It sets out requirements and provides guidance for a management system designed to help an organization to prevent, detect and respond to bribery and comply with anti-bribery laws and voluntary commitments applicable to its activities. The requirements of this document are generic and are intended to be applicable to all organizations (or parts of an organization), regardless of type, size and nature of activity, and whether in the public, private or not-for-profit sectors. The extent of application of these requirements depends on the factors specified in 4.1, 4.2 and 4.5. NOTE 1 See Clause A.2 for guidance. NOTE 2 The measures necessary to prevent, detect and mitigate the risk of bribery by the organization can be different from the measures used to prevent, detect and respond to bribery of the organization (or its personnel or business associates acting on the organization's behalf). See A.8 for guidance.

************************************************************************************

 

This document defines terms used in digital imaging in photography.

 

This document provides a framework of descriptors to support the consistent characterization of AI system methods and capabilities. The framework helps AI stakeholders to describe AI systems and have a common understanding of them. This document applies to all types of organizations involved in any of the life cycle stages of AI systems as well as to any AI stakeholder roles.

 

This document provides definitions, concepts, guidelines and methodology to address AI-enhanced nudging mechanisms by organizations. It provides requirements for designing responsible AI-enhanced nudging mechanisms, key indicators, both horizontally and vertically. This document supports organizations that develop or use AI-enhanced nudges, as well as entities interested in the protection of civil society and individuals, including consumers and workers.

 

This document provides guidance on the intent of the requirements in iso:proj:88464ISO/DIS 9001 ISO 9001:2026, with examples of possible steps an organization can take to meet the requirements. It does not add to, subtract from, or in any way modify those requirements. This document does not prescribe mandatory approaches to implementation or provide any preferred method of interpretation.

************************************************************************************

Tiedoksi lausunnonantajalle: 

Lausunnon ensisijaisena tarkoituksena on vastaanottaa kommentteja ja kannanottoja suomalaisilta yksityishenkilöiltä ja organisaatioilta standardiluonnoksen teknistä sisältöä ja hyväksymistä koskien. Vastaa kohdassa ’Ota kantaa’ tulisiko tämä standardiluonnos hyväksyä maailmanlaajuiseksi ISO-standardiksi. Kantasi ja kommenttisi otetaan huomioon Suomen kannan muodostamisessa lausunnon eräännyttyä.

Kannanotot ja kommentit käsitellään lausuntoajan päätyttyä SFS:n standardointiryhmässä SFS/SR 105 laadunhallinta.

 

This document specifies a method for identifying microplastics, using microscopic observation, whether the size of captured fibre fragments released from fabrics under washing test conditions. It also specifies a thermal method and a gravimetric method for the quantitative determination of microplastics made of certain synthetic fibres: polyester (PES), polyamide (PA), acrylic (PAN), elastane (EL), polypropylene (PP), and polyethylene (PE). The thermal methods such as pyrolysis-gas chromatography-mass spectrometry (Py-GC-MS) and thermo extraction desorption-gas chromatography - mass spectrometry (TED-GC-MS) are applicable to PES, PAN, PA, and EL. The gravimetric method is applicable to PP and PE, including blended fabrics, provided that non-PP/PE components are dissolved by appropriate solvents so that PP and PE are isolated for quantification. These thermal and gravimetric methods are applicable to fabrics composed of these six synthetic fibres, either alone or in blends with other fibres (e.g., natural or non-target synthetic fibres). Gravimetric method does not apply to: solvent-insoluble components (e.g., aramids) composed with polypropylene and/or polyethylene

 

This document specifies principles, requirements and guidance for organizations to develop, implement and communicate a net zero aligned pathway. This includes setting targets, developing plans, taking actions and demonstrating verifiable progress towards these targets, in support of global net zero, respecting the Paris Agreement [2].

 

This document sets requirements to be fulfilled by organizations to make the following claims : 1. Net zero aspiration or 2. Net zero aligned transition plan; or 3. Net zero aligned progress; or 4. Net zero achievement.

 

It is applicable to a wide range of organizations (including companies, corporations, firms, partnerships, non-governmental organizations or academic institutions) in the public or private sectors.

 

It does not apply to territories (such as regions, countries, states or cities) or by sectors, as the basis for establishing frameworks applicable at those levels. Also, it is not to be used for products, services, events, brands, or claims relating to them, for which other standards are available.

 

This document has been developed primarily for non-financial institutions. ISO/FDIS 32212 [13] Sustainable finance — Net zero transition planning for financial institutions specifically addresses financing activities. However, this document can also be applied by financial institution to their non-financing activities.

 

Where relevant, this document makes reference to other existing standards and frameworks applicable to financial institutions, for example the Science-Based Target Initiative's (SBTi) Financial Institutions Net-Zero Standard and the Partnership for Carbon Accounting Financial's (PCAF) Global Accounting and Reporting Standards

 

This standard is greenhouse gas (GHG) programme neutral. If a greenhouse gas (GHG) programme is applicable, requirements of that greenhouse gas (GHG) programme are additional to the requirements of this standard.

 

Annex A provides guidance for the application of this document by SME users.

 

This document provides guidance on the use of international standards as a tool in the development of those policies that govern or regulate cloud service providers (CSPs) and cloud services, and those policies and practices that govern the use of cloud services in organizations. This includes content that explains cloud computing concepts and the role of cloud computing international standards in formulating policies and practices. The document makes references to various international standards. Where possible, these standards are ISO/IEC standards. Where a suitable ISO/IEC standard is not available, references are made to documents published by other WTO-registered standards bodies11The WTO ISO Standards Information Gateway (http://tbtcode.iso.org) is the official portal listing all standardising bodies that have accepted the Code of Good Practice. This is the authoritative source for up-to-date information on which bodies are “recognised” for TBT purposes. The Code is open to any standardising body within a WTO Member’s territory, and acceptance is voluntary but strongly encouraged by the WTO.. As explained in the WTO Agreement on Technical Barriers to Trade (TBT), standards play a vital role in supporting technical regulations and conformity assessment, however this document does not cover matters of trade.

 

This document provides a framework of descriptors to support the consistent characterization of AI system methods and capabilities. The framework helps AI stakeholders describe AI systems and have a common understanding of them. This document applies to all types of organizations involved in any of the lifecycle stages of AI systems as well as to any AI stakeholder roles