ISO42001-A.7.5-01 Requirement A.7.5 — Data Acquisition and Collection

Establish Data Acquisition and Collection Processes

Description

The organization must establish formal processes for the acquisition and collection of data for AI systems that comply with applicable legal, regulatory, ethical, and contractual requirements.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Related Obligations

ISO42001-A.7.5-02 Data Governance

Obtain Data Through Lawful and Ethical Means

ISO42001-A.7.5-03 Data Governance

Respect Privacy Rights and Consent Requirements

ISO42001-A.7.5-04 Requirement

Ensure Proportionate Data Acquisition Activities

ISO42001-A.7.5-05 Documentation

Document Data Acquisition Sources, Methods, and Conditions

ISO42001-A.7.5-06 Risk Management

Assess Data Acquisition Risks

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Establish Data Acquisition and Collection Processes

Description

Full Analysis & Evidence Requirements

Related Obligations

Map this obligation to your AI systems

Start your compliance assessment