The additional criteria
The Trust Service Criteria include an additional set of criteria that complement the COSO principle. These criteria, defined within the introductory section of this document, outline metrics that aim to improve the entity’s internal control process and risk management. They are specific to availability, processing integrity, confidentiality, and privacy. The sections below show the application and use cases for some selected requirements.