Governance & Program Info

Site Security & Physical Monitoring — Governance

Cross-builder institution context and per-item ownership, due dates, status, and next actions for the governance-relevant checklist items in this builder.

← Back to checklist
Institution context
Program info
Applies across every builder in the app. Stored locally; nothing leaves the browser.
Checklist governance
Items (0 of 14 marked complete)
Annotate ownership, due date, status, and next action. Items on the left come from the builder's governance / compliance phases.
05 · Governance & Compliance
Complete Data Protection Impact Assessment (DPIA) / Fundamental Rights Impact Assessment (FRIA)
required
GDPR DPIA under Art. 35 and, where biometric identification is in scope, an EU AI Act Annex III FRIA.
05 · Governance & Compliance
BIPA / CUBI / state biometric consent compliance
required
Written consent, retention schedule, and disclosure for any biometric identifier captured in scope jurisdictions.
05 · Governance & Compliance
CCPA / CPRA — sensitive personal information disclosures
required
Disclosure, opt-out, and limit-use controls for any data classified as SPI under CPRA.
05 · Governance & Compliance
On-site signage and notice
required
Clear notice at every monitored site per jurisdictional and ASIS / SIA guidance.
05 · Governance & Compliance
Data-subject access / deletion workflow
required
Operational process to retrieve, redact, and delete personal data on request within statutory windows.
05 · Governance & Compliance
Align with ASIS Physical Security Standard
recommended
Document how the CV program implements the ASIS Physical Asset Protection / PSP guidance for intrusion detection.
05 · Governance & Compliance
Align with SIA performance standards
recommended
Map detection, verification, and alarm-handling steps to SIA performance guidance for video surveillance and intrusion.
05 · Governance & Compliance
OSHA climb / fall-protection escalation protocol
required
When a climb is detected off-schedule, the escalation path aligns with OSHA 29 CFR 1926 Subpart M authorized-climber records.
05 · Governance & Compliance
FCC Part 17 obstruction-lighting reporting linkage
recommended
Where CV is a secondary obstruction-light monitor, link detected outages to the existing FCC Part 4 / NORS reporting workflow.
05 · Governance & Compliance
Model card per production model
required
Documented purpose, training data, known limitations, failure modes, and per-class performance for every deployed model.
05 · Governance & Compliance
Change management and versioning
required
Who approves model updates, what tests are required, how changes propagate to the fleet, and how rollback works.
05 · Governance & Compliance
Evidence / clip retention policy
required
Retention window, legal-hold handling, and chain-of-custody for event clips used in dispute or prosecution.
05 · Governance & Compliance
Insurance and claims documentation
recommended
Documented CV deployment supports insurance-premium reduction (typically 8–15%) and claims defense with evidence clips.
05 · Governance & Compliance
Union / works-council review where applicable
recommended
Formal review with workforce representatives on worker-monitoring scope before deployment.