Hi all
I recently stumbled upon a CSA registry entry where a disclaimer sheet has been added in the CAIQ. The company that submitted it disclaims any terms and statements in the CAIQ, and states clearly that the Yes/No answers may apply to some services, and not to others.
In summary, this additional sheet reads like: "we completed this CAIQ, but we do not commit it's true for every customer, and if you as a customer find misrepresentation... then tough luck, life goes on".
This made me wonder, is there any validation of the submissions in the CSA star registry?
------------------------------
Michalis Kamprianis
Director Cyber Security
Hexagon Manufacturing Intelligence
------------------------------