During the audit, documented information involving proprietary information was protected at all times. Which principle has been followed?

The principle that has been followed in this scenario is confidentiality. Confidentiality refers to the obligation to protect proprietary and sensitive information from unauthorized access or disclosure. When documented information, especially proprietary information, is safeguarded during an audit, it clearly demonstrates adherence to this principle. This protection ensures that sensitive data is only accessible to those who are authorized, thus maintaining the trust and security of the information being examined.

The concept of confidentiality is integral in information security management systems, like those outlined in ISO/IEC 27001, as it emphasizes the importance of protecting the information assets of an organization. By maintaining confidentiality throughout the audit process, organizations can reduce the risk of information leaks and protect their proprietary knowledge.

The other principles—authorship, conciseness, and integrity—do not directly relate to the protection of proprietary information. Authorship pertains to the recognition of the creator of a document, conciseness addresses the brevity of documentation, and integrity focuses on the accuracy and reliability of information. None of these directly addresses the need to safeguard sensitive or proprietary information as confidentiality does.