Back to Frameworks
GS1 Global Standards - Supply Chain Traceability and Data Security
International (GS1 — 116 countries)
v2024
14 domains
34 controls
GS1 is the global standards organisation for supply chain identification and data exchange, serving over 2 million member companies in 116 countries. GS1 standards underpin global retail, healthcare, and logistics operations. Key standards include: GTIN (Global Trade Item Number/barcode), GLN (Global Location Number), SSCC (Serial Shipping Container Code), GDSN (Global Data Synchronisation Network), GS1 Digital Link, EPCIS (Electronic Product Code Information Services) for supply chain visibility, and GS1 Healthcare. GS1 standards are mandated by major retailers (Walmart, Amazon, Carrefour), healthcare regulators (FDA UDI, EU MDR), and logistics operators. Data security and integrity provisions protect product authenticity.
Unverified
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (14)
Data Capture
3 controls
| Code | Title |
|---|---|
| GS1-DC-1 | Barcode Standards (GS1-128, DataMatrix) |
| GS1-DC-2 | RFID/EPC Standards |
| GS1-DC-3 | GS1 Digital Link |
Data Carriers
2 controls
| Code | Title |
|---|---|
| GS1-AI-1 | Application Identifier Usage |
| GS1-BARCODE-1 | Barcode Quality and Verification |
Data Security
2 controls
| Code | Title |
|---|---|
| GS1-DSEC-1 | Data Security and Integrity in Exchange |
| GS1-DSEC-2 | Access Control to Traceability Data |
Data Sharing
3 controls
| Code | Title |
|---|---|
| GS1-DS-1 | EPCIS (Electronic Product Code Information Services) |
| GS1-DS-2 | GS1 Global Data Synchronisation Network (GDSN) |
| GS1-DS-3 | Data Quality Requirements |
Digital Link
2 controls
| Code | Title |
|---|---|
| GS1-DL-1 | GS1 Digital Link Implementation |
| GS1-DL-2 | Resolver Service Availability |
EPCIS
4 controls
| Code | Title |
|---|---|
| GS1-EPCIS-1 | EPCIS Event Capture (What, When, Where, Why) |
| GS1-EPCIS-2 | EPCIS Event Types Coverage |
| GS1-EPCIS-3 | Core Business Vocabulary |
| GS1-EPCIS-4 | EPCIS Query and Subscription |
Governance
1 controls
| Code | Title |
|---|---|
| GS1-GOV-1 | GS1 Membership and Prefix Governance |
Identification
3 controls
| Code | Title |
|---|---|
| GS1-GLN-1 | GLN for Locations and Parties |
| GS1-GTIN-1 | GTIN Assignment and Uniqueness |
| GS1-SSCC-1 | SSCC for Logistic Units |
Identification Standards
3 controls
| Code | Title |
|---|---|
| GS1-ID-1 | Global Trade Item Number (GTIN) |
| GS1-ID-2 | Global Location Number (GLN) |
| GS1-ID-3 | Serial Shipping Container Code (SSCC) |
Logistics
1 controls
| Code | Title |
|---|---|
| GS1-DSEC-5 | Logistic Label Tamper Evidence |
Master Data
3 controls
| Code | Title |
|---|---|
| GS1-DSEC-3 | Master Data Change Control |
| GS1-DSEC-4 | Verification of Data Quality |
| GS1-GDSN-1 | Master Data Synchronization via GDSN |
Sector
2 controls
| Code | Title |
|---|---|
| GS1-SECT-1 | Sector-Specific Implementation (Healthcare) |
| GS1-SECT-2 | Sector-Specific Implementation (Food and Foodservice) |
Traceability
2 controls
| Code | Title |
|---|---|
| GS1-TRACE-1 | End-to-End Traceability |
| GS1-TRACE-2 | Mock Recall and Withdrawal Test |
Traceability Framework
3 controls
| Code | Title |
|---|---|
| GS1-TR-1 | Critical Tracking Events (CTEs) |
| GS1-TR-2 | Key Data Elements (KDEs) |
| GS1-TR-3 | One-Up/One-Down Traceability |
Your Compliance Coverage
If you comply with GS1 Global Standards - Supply Chain Traceability and Data Security, you already cover:
EU AI Act
15%
5 controls mapped
Compare →ISO/IEC 23894:2023
15%
5 controls mapped
Compare →21 CFR Part 211 - Current Good Manufacturing Practice
12%
4 controls mapped
Compare →+ 229 more: BRCGS Global Standard for Food Safety Issue 9 (12%), NIST SP 800-171A Rev 3 - Assessing CUI Security Requirements (12%)
See all 232 mapped frameworks ↓Maps to 232 other frameworks
34 total controls
EU AI Act
5 source controls mapped|4 target controls covered
15%
ISO/IEC 23894:2023
5 source controls mapped|3 target controls covered
15%
21 CFR Part 211 - Current Good Manufacturing Practice
4 source controls mapped|4 target controls covered
12%
BRCGS Global Standard for Food Safety Issue 9
4 source controls mapped|8 target controls covered
12%
NIST SP 800-171A Rev 3 - Assessing CUI Security Requirements
4 source controls mapped|6 target controls covered
12%
AS9100D:2016 - Quality Management Systems for Aviation, Space, and Defence
4 source controls mapped|8 target controls covered
12%
GLOBALG.A.P. Integrated Farm Assurance (IFA) Standard v6
4 source controls mapped|3 target controls covered
12%
AS9100D - Aerospace Quality Management System
4 source controls mapped|6 target controls covered
12%
ISO/IEC 27003:2017
4 source controls mapped|6 target controls covered
12%
ISO 15189:2022 - Medical Laboratories Requirements for Quality and Competence
4 source controls mapped|8 target controls covered
12%
SQF Code Edition 9 - Safe Quality Food
4 source controls mapped|4 target controls covered
12%
ISO/IEC 27006:2024
4 source controls mapped|4 target controls covered
12%
ISO/IEC 17025:2017 - General Requirements for Testing and Calibration Laboratories
4 source controls mapped|4 target controls covered
12%
FDA Quality Management System Regulation (QMSR)
4 source controls mapped|3 target controls covered
12%
PIC/S Guide to Good Manufacturing Practice for Medicinal Products
4 source controls mapped|4 target controls covered
12%
EU NIS2 Directive - Transport Sector Requirements
4 source controls mapped|2 target controls covered
12%
ISO 28001:2007 Supply Chain Security Management
4 source controls mapped|5 target controls covered
12%
Singapore Model AI Governance Framework (2nd Edition)
3 source controls mapped|2 target controls covered
9%
ICH E6(R3) - Good Clinical Practice
3 source controls mapped|1 target controls covered
9%
ISO/IEC 25012:2008 - Data Quality Model
3 source controls mapped|4 target controls covered
9%
UK ONR Cyber Security and Information Assurance (CSIA) for Nuclear Facilities
3 source controls mapped|2 target controls covered
9%
API 1164
3 source controls mapped|3 target controls covered
9%
USMCA Chapter 19 - Digital Trade (United States-Mexico-Canada Agreement)
3 source controls mapped|1 target controls covered
9%
CISA Cross-Sector Cybersecurity Performance Goals (CPG) 2.0
3 source controls mapped|2 target controls covered
9%
UK Defence Standard 05-138 - Cyber Security for Defence Suppliers
3 source controls mapped|3 target controls covered
9%
Automotive SPICE (ASPICE) v4.0 - Process Assessment Model
3 source controls mapped|1 target controls covered
9%
FBI CJIS Security Policy
3 source controls mapped|1 target controls covered
9%
NATO AQAP 2110 - Quality Assurance Requirements for Design, Development, and Production
3 source controls mapped|3 target controls covered
9%
Annex 11 to EU GMP - Computerised Systems
3 source controls mapped|1 target controls covered
9%
EIOPA Guidelines on ICT Security and Governance (EIOPA‑BoS‑23/146, 2023)
3 source controls mapped|3 target controls covered
9%
GAMP 5 - Good Automated Manufacturing Practice
3 source controls mapped|1 target controls covered
9%
DFARS 252.204-7012 - Safeguarding Covered Defense Information
3 source controls mapped|3 target controls covered
9%
FedRAMP Rev 5
3 source controls mapped|2 target controls covered
9%
DO-326A / ED-202A
3 source controls mapped|3 target controls covered
9%
ISO/IEC 27010:2015
3 source controls mapped|1 target controls covered
9%
Ontario Accessibility for Ontarians with Disabilities Act (AODA) - IASR Web Standard
3 source controls mapped|1 target controls covered
9%
OWASP Top 10:2025
3 source controls mapped|1 target controls covered
9%
Vermont Artificial Intelligence and Consumer Data Act (AICDA)
3 source controls mapped|1 target controls covered
9%
Digital Economy Partnership Agreement (DEPA)
3 source controls mapped|1 target controls covered
9%
OWASP DevSecOps Maturity Model (DSOMM)
3 source controls mapped|2 target controls covered
9%
APRA CPS 230 Operational Risk Management
3 source controls mapped|2 target controls covered
9%
Digital Services Act (DSA) - Regulation (EU) 2022/2065
3 source controls mapped|1 target controls covered
9%
Digital Services Act (Regulation (EU) 2022/2065 of the European Parliament and of the Council of 6 July 2022)
3 source controls mapped|1 target controls covered
9%
EU Machinery Regulation (Regulation (EU) 2023/1230)
3 source controls mapped|1 target controls covered
9%
EU General Product Safety Regulation (GPSR, Regulation 2023/988)
3 source controls mapped|1 target controls covered
9%
EU In Vitro Diagnostic Medical Devices Regulation (IVDR)
3 source controls mapped|1 target controls covered
9%
EU Network Code on Cybersecurity for the Electricity Sector
3 source controls mapped|1 target controls covered
9%
EU Taxonomy Regulation (Regulation 2020/852)
3 source controls mapped|1 target controls covered
9%
MiFID II / MiFIR
3 source controls mapped|1 target controls covered
9%
Law No. 09-08 on the Protection of Individuals with Regard to the Processing of Personal Data
3 source controls mapped|1 target controls covered
9%
Tunisia Organic Law on Personal Data Protection (Law No. 2004-63)
3 source controls mapped|1 target controls covered
9%
Law No. 2013-450 of 19 June 2013 on the Protection of Personal Data
3 source controls mapped|1 target controls covered
9%
Pakistan Personal Data Protection Bill 2023
3 source controls mapped|1 target controls covered
9%
Kazakhstan Law on Personal Data and Their Protection (No. 94-V)
3 source controls mapped|1 target controls covered
9%
Georgia Law on Personal Data Protection (2012)
3 source controls mapped|1 target controls covered
9%
Iceland Data Protection and Processing of Personal Data Act (Act No. 90/2018)
3 source controls mapped|1 target controls covered
9%
Serbia Law on Personal Data Protection (2018)
3 source controls mapped|1 target controls covered
9%
Lithuania Law on Legal Protection of Personal Data (2018)
3 source controls mapped|1 target controls covered
9%
Portugal Law No. 58/2019 - Data Protection Implementation Act
3 source controls mapped|1 target controls covered
9%
Netherlands GDPR Implementation Act (UAVG - Uitvoeringswet AVG, 2018)
3 source controls mapped|1 target controls covered
9%
Oman Personal Data Protection Law (Royal Decree 6/2022)
3 source controls mapped|1 target controls covered
9%
South Korea Personal Information Protection Act (PIPA)
3 source controls mapped|1 target controls covered
9%
ISO/IEC 27011:2024
3 source controls mapped|1 target controls covered
9%
Regulation (EU) 2019/1239 on the Maritime Single Window (MSW)
3 source controls mapped|1 target controls covered
9%
EBA Guidelines on ICT and Security Risk Management (EBA/GL/2024/07)
3 source controls mapped|1 target controls covered
9%
WCO Authorised Economic Operator (AEO) Framework
3 source controls mapped|2 target controls covered
9%
Authorised Economic Operator (AEO) Programmes - Global Standards
3 source controls mapped|3 target controls covered
9%
Philippines Cybercrime Prevention Act (RA 10175)
3 source controls mapped|1 target controls covered
9%
ISO 27019
3 source controls mapped|3 target controls covered
9%
SA8000:2014 - Social Accountability Standard
3 source controls mapped|1 target controls covered
9%
ISO 41001:2018 - Facility Management Systems
3 source controls mapped|2 target controls covered
9%
ISO 39001:2012 - Road Traffic Safety Management
3 source controls mapped|2 target controls covered
9%
ISO 50001:2018 - Energy Management Systems
3 source controls mapped|2 target controls covered
9%
ISO 22313:2020 - Guidance on Business Continuity Management Systems
3 source controls mapped|2 target controls covered
9%
NIST AI Risk Management Framework (AI RMF 1.0)
3 source controls mapped|1 target controls covered
9%
NIST AI 600-1: Generative AI Profile
3 source controls mapped|1 target controls covered
9%
NERC CIP
3 source controls mapped|3 target controls covered
9%
Security of Critical Infrastructure Act 2018 (SOCI)
3 source controls mapped|1 target controls covered
9%
IEC 62443
3 source controls mapped|3 target controls covered
9%
IATF 16949:2016 - Quality Management System for Automotive Production
3 source controls mapped|1 target controls covered
9%
ICAO Annex 17 - Aviation Security (AVSEC)
3 source controls mapped|2 target controls covered
9%
UK Security and Emergency Measures Direction (SEMD) - Water Industry
3 source controls mapped|1 target controls covered
9%
Protective Security Policy Framework (PSPF) Release 2024
3 source controls mapped|3 target controls covered
9%
TSA Pipeline Security
3 source controls mapped|3 target controls covered
9%
IEEE 1686
3 source controls mapped|3 target controls covered
9%
Modern Slavery Act 2018 (Australia)
3 source controls mapped|2 target controls covered
9%
NIST SP 1800-32
3 source controls mapped|3 target controls covered
9%
Singapore Government Instruction Manual on ICT&SS Management (IM8)
3 source controls mapped|1 target controls covered
9%
ISO 20400:2017 - Sustainable Procurement
3 source controls mapped|3 target controls covered
9%
NIS2 Directive
3 source controls mapped|3 target controls covered
9%
NIST Cybersecurity Framework 2.0
3 source controls mapped|3 target controls covered
9%
PAS 1192-5:2015 - Security-Minded Approach to BIM and Digital Built Environments
3 source controls mapped|2 target controls covered
9%
New Zealand Information Security Manual (NZISM)
3 source controls mapped|2 target controls covered
9%
MARS-E - Minimum Acceptable Risk Standards for Exchanges
3 source controls mapped|2 target controls covered
9%
South Korea Cloud Security Assurance Program (CSAP)
3 source controls mapped|2 target controls covered
9%
NRC 10 CFR 73.54 - Nuclear Facility Cybersecurity
3 source controls mapped|2 target controls covered
9%
German Supply Chain Due Diligence Act (LkSG)
3 source controls mapped|3 target controls covered
9%
TISAX - Trusted Information Security Assessment Exchange
3 source controls mapped|3 target controls covered
9%
SASB Standards (ISSB Integrated)
3 source controls mapped|1 target controls covered
9%
SASB Standards
3 source controls mapped|1 target controls covered
9%
Sigstore - Software Artifact Signing and Verification
3 source controls mapped|1 target controls covered
9%
OECD Guidelines for Multinational Enterprises on Responsible Business Conduct (2023 Update)
3 source controls mapped|1 target controls covered
9%
NIST SP 800-53 Rev 5
3 source controls mapped|3 target controls covered
9%
ISO 27001:2022
3 source controls mapped|3 target controls covered
9%
ISO 22318
3 source controls mapped|1 target controls covered
9%
UK Telecommunications (Security) Act 2021
3 source controls mapped|1 target controls covered
9%
Space ISAC (Information Sharing and Analysis Center) - Threat Framework
3 source controls mapped|1 target controls covered
9%
Laos Law on Prevention and Combating Cybercrime (2015)
3 source controls mapped|1 target controls covered
9%
French Sapin II Law (Law No. 2016-1691)
3 source controls mapped|1 target controls covered
9%
Responsible Minerals Initiative (RMI) - Responsible Minerals Assurance Process
3 source controls mapped|3 target controls covered
9%
ECB TIBER-EU Framework
3 source controls mapped|1 target controls covered
9%
Solvency II
3 source controls mapped|3 target controls covered
9%
IRM Enterprise Risk Management Framework (Institute of Risk Management)
3 source controls mapped|1 target controls covered
9%
UK FCA/PRA Operational Resilience Framework
3 source controls mapped|1 target controls covered
9%
NIST Privacy Framework 1.0
3 source controls mapped|1 target controls covered
9%
US Executive Order 14028 - Improving the Nation's Cybersecurity
3 source controls mapped|2 target controls covered
9%
BREEAM - Building Research Establishment Environmental Assessment Method
3 source controls mapped|1 target controls covered
9%
OWASP Top 10 for LLM Applications 2025
3 source controls mapped|1 target controls covered
9%
GLI-33 - Gaming Laboratories International Event Wagering Systems
3 source controls mapped|1 target controls covered
9%
Telecommunications Sector Security Reforms (TSSR)
3 source controls mapped|1 target controls covered
9%
FAA Cybersecurity Framework for Aviation
3 source controls mapped|1 target controls covered
9%
Papua New Guinea National Cybersecurity Policy & Cybercrime Act (2016)
3 source controls mapped|1 target controls covered
9%
Japan FSA Cybersecurity Guidelines for Financial Institutions
3 source controls mapped|1 target controls covered
9%
RBI Cybersecurity Framework for Banks
3 source controls mapped|1 target controls covered
9%
Kuwait National Cybersecurity Framework
3 source controls mapped|1 target controls covered
9%
IAEA Nuclear Security Series - Computer Security at Nuclear Facilities (NSS-17-T Rev 1)
3 source controls mapped|1 target controls covered
9%
NIST SP 800-82 Revision 3: Guide to Industrial Control Systems (ICS) Security
3 source controls mapped|1 target controls covered
9%
South Korea ISMS-P
3 source controls mapped|1 target controls covered
9%
UK Gambling Commission - Cyber Resilience Requirements
3 source controls mapped|1 target controls covered
9%
ISO 22317
3 source controls mapped|1 target controls covered
9%
NIST SP 800-124 Revision 2 - Guidelines for Managing the Security of Mobile Devices
3 source controls mapped|1 target controls covered
9%
ISO 26000:2010
3 source controls mapped|1 target controls covered
9%
ISO 22316
3 source controls mapped|1 target controls covered
9%
ICH Q10 - Pharmaceutical Quality System
3 source controls mapped|1 target controls covered
9%
APPI
2 source controls mapped|2 target controls covered
6%
Privacy Act 1988 (Australia)
2 source controls mapped|3 target controls covered
6%
Delaware Online Privacy and Protection Act (proposed)
2 source controls mapped|3 target controls covered
6%
FERPA
2 source controls mapped|3 target controls covered
6%
India DPDP Act
2 source controls mapped|3 target controls covered
6%
Bahrain PDPL
2 source controls mapped|3 target controls covered
6%
Ley Orgánica de Protección de Datos Personales (LOPDP)
2 source controls mapped|3 target controls covered
6%
Regulation on the European Health Data Space (EHDS)
2 source controls mapped|1 target controls covered
6%
Law No. 172-13 on the Protection of Personal Data
2 source controls mapped|3 target controls covered
6%
EDM Council DCAM - Data Management Capability Assessment Model
2 source controls mapped|3 target controls covered
6%
Albania Law on Protection of Personal Data (Law No. 9887, 2008, amended 2014)
2 source controls mapped|1 target controls covered
6%
EU Data Governance Act (DGA)
2 source controls mapped|2 target controls covered
6%
Switzerland FADP
2 source controls mapped|3 target controls covered
6%
DAMA-DMBOK2 - Data Management Body of Knowledge (2nd Edition)
2 source controls mapped|3 target controls covered
6%
Global Cross-Border Privacy Rules (Global CBPR) Forum
2 source controls mapped|1 target controls covered
6%
EDM Council CDMC - Cloud Data Management Capability Framework
2 source controls mapped|1 target controls covered
6%
Saudi Arabia PDPL
2 source controls mapped|3 target controls covered
6%
Mexico LFPDPPP
2 source controls mapped|3 target controls covered
6%
Mauritius DPA
2 source controls mapped|3 target controls covered
6%
UAE PDPL
2 source controls mapped|3 target controls covered
6%
Malaysia PDPA 2010
2 source controls mapped|3 target controls covered
6%
Personal Data Act (personopplysningsloven)
2 source controls mapped|3 target controls covered
6%
Uruguay DPL
2 source controls mapped|3 target controls covered
6%
New Hampshire Data Privacy Act
2 source controls mapped|3 target controls covered
6%
Peru DPL
2 source controls mapped|3 target controls covered
6%
Oregon Consumer Privacy Act
2 source controls mapped|3 target controls covered
6%
Qatar DPL
2 source controls mapped|3 target controls covered
6%
UK Data Protection Act 2018
2 source controls mapped|3 target controls covered
6%
Singapore AI Governance Framework
2 source controls mapped|3 target controls covered
6%
Maryland Online Data Privacy Act of 2024
2 source controls mapped|3 target controls covered
6%
Utah Consumer Privacy Act
2 source controls mapped|3 target controls covered
6%
Texas Data Privacy Act
2 source controls mapped|3 target controls covered
6%
New Jersey Data Privacy Act
2 source controls mapped|3 target controls covered
6%
Zimbabwe Data Protection Act (2021)
2 source controls mapped|1 target controls covered
6%
Indonesia PDP Law
2 source controls mapped|3 target controls covered
6%
South Korea PIPA
2 source controls mapped|3 target controls covered
6%
UK AI Regulation Framework
2 source controls mapped|3 target controls covered
6%
Virginia CDPA
2 source controls mapped|3 target controls covered
6%
OECD AI Principles
2 source controls mapped|3 target controls covered
6%
Vietnam PDPD
2 source controls mapped|3 target controls covered
6%
PDPA Singapore
2 source controls mapped|3 target controls covered
6%
Japan AI Guidelines
2 source controls mapped|3 target controls covered
6%
LGPD
2 source controls mapped|3 target controls covered
6%
Nebraska Data Privacy Act
2 source controls mapped|3 target controls covered
6%
Iceland DPA
2 source controls mapped|3 target controls covered
6%
WHO Global Strategy on Digital Health 2020-2025
2 source controls mapped|1 target controls covered
6%
Jamaica DPA
2 source controls mapped|3 target controls covered
6%
IEEE 7000
2 source controls mapped|3 target controls covered
6%
Privacy Act 2020
2 source controls mapped|3 target controls covered
6%
PDPA Thailand
2 source controls mapped|3 target controls covered
6%
NIST SP 800-122
2 source controls mapped|3 target controls covered
6%
Turkey KVKK
2 source controls mapped|3 target controls covered
6%
Turkey Personal Data Protection Law (KVKK - Law No. 6698)
2 source controls mapped|2 target controls covered
6%
POPIA
2 source controls mapped|3 target controls covered
6%
Tennessee IPA
2 source controls mapped|3 target controls covered
6%
Iowa Consumer Data Protection Act
2 source controls mapped|3 target controls covered
6%
Rwanda DPL
2 source controls mapped|3 target controls covered
6%
Indiana Consumer Data Protection Act
2 source controls mapped|3 target controls covered
6%
UNESCO Recommendation on the Ethics of AI
2 source controls mapped|2 target controls covered
6%
Philippines DPA
2 source controls mapped|3 target controls covered
6%
Kentucky Consumer Data Protection Act
2 source controls mapped|3 target controls covered
6%
Hungary Act CXII of 2011 on Informational Self-Determination and Freedom of Information (Info Act)
2 source controls mapped|1 target controls covered
6%
Jordan Draft Personal Data Protection Law (2022)
2 source controls mapped|1 target controls covered
6%
Taiwan PDPA
2 source controls mapped|3 target controls covered
6%
Nigeria Data Protection Regulation (NDPR)
2 source controls mapped|3 target controls covered
6%
Kenya DPA
2 source controls mapped|3 target controls covered
6%
Kenya Data Protection Act
2 source controls mapped|3 target controls covered
6%
Liechtenstein DPA
2 source controls mapped|3 target controls covered
6%
RICS Professional Standards - Data and Technology in Property
2 source controls mapped|1 target controls covered
6%
Minnesota Consumer Data Privacy Act
2 source controls mapped|3 target controls covered
6%
AICPA Privacy Management Framework (PMF)
2 source controls mapped|1 target controls covered
6%
Montana Consumer Data Privacy Act
2 source controls mapped|3 target controls covered
6%
21 CFR Part 58 - Good Laboratory Practice (GLP)
2 source controls mapped|1 target controls covered
6%
ISO 45001:2018
2 source controls mapped|4 target controls covered
6%
SWIFT CSCF
2 source controls mapped|4 target controls covered
6%
ISO 27005
2 source controls mapped|2 target controls covered
6%
ISO 13485
2 source controls mapped|4 target controls covered
6%
SWIFT CSCF v2024
2 source controls mapped|4 target controls covered
6%
ISO 13485:2016
2 source controls mapped|3 target controls covered
6%
ISO 14001:2015
2 source controls mapped|4 target controls covered
6%
EU Digital Services Act
2 source controls mapped|1 target controls covered
6%
ISO 20000-1
2 source controls mapped|3 target controls covered
6%
ISO 9001:2015
2 source controls mapped|4 target controls covered
6%
ISO/IEC 27701:2019
2 source controls mapped|1 target controls covered
6%
FSSC 22000 - Food Safety System Certification
2 source controls mapped|3 target controls covered
6%
ISO 19011
2 source controls mapped|1 target controls covered
6%
ISO 31000:2018
2 source controls mapped|1 target controls covered
6%
ISO 14001
2 source controls mapped|2 target controls covered
6%
ASIS SPC.1-2009 - Organizational Resilience Standard
2 source controls mapped|2 target controls covered
6%
US OFAC Sanctions Compliance Framework
2 source controls mapped|3 target controls covered
6%
DO-178C / ED-12C - Software Considerations in Airborne Systems
2 source controls mapped|3 target controls covered
6%
EU Medical Devices Regulation (MDR 2017/745)
2 source controls mapped|2 target controls covered
6%
IEC 62304:2015 Medical Device Software Lifecycle Processes
2 source controls mapped|1 target controls covered
6%
ICC Incoterms 2020 - International Commercial Terms
2 source controls mapped|3 target controls covered
6%
US Automated Commercial Environment (ACE) - CBP Trade Data Requirements
2 source controls mapped|1 target controls covered
6%
DISA Security Technical Implementation Guides (STIGs)
2 source controls mapped|1 target controls covered
6%
US Maritime Transportation Security Act (MTSA) and USCG Cybersecurity Requirements
2 source controls mapped|1 target controls covered
6%
ITAR - International Traffic in Arms Regulations
2 source controls mapped|1 target controls covered
6%
Frequently Asked Questions
What is GS1 Global Standards - Supply Chain Traceability and Data Security?
GS1 Global Standards - Supply Chain Traceability and Data Security is a compliance framework from International (GS1 — 116 countries) with 14 domains and 34 controls. GS1 is the global standards organisation for supply chain identification and data exchange, serving over 2 million member companies in 116 countries. GS1 standards underpin global retail, healthcare, and logistics operations. Key standards include: GTIN (Global Trade Item Number/barcode), GLN (Global Location Number), SSCC (Serial Shipping Container Code), GDSN (Global Data Synchronisation Network), GS1 Digital Link, EPCIS (Electronic Product Code Information Services) for supply chain visibility, and GS1 Healthcare. GS1 standards are mandated by major retailers (Walmart, Amazon, Carrefour), healthcare regulators (FDA UDI, EU MDR), and logistics operators. Data security and integrity provisions protect product authenticity. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does GS1 Global Standards - Supply Chain Traceability and Data Security have?
GS1 Global Standards - Supply Chain Traceability and Data Security has 34 controls organised across 14 domains. The largest domains are EPCIS (4 controls), Data Capture (3 controls), Data Sharing (3 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does GS1 Global Standards - Supply Chain Traceability and Data Security map to?
GS1 Global Standards - Supply Chain Traceability and Data Security maps to 232 other compliance frameworks. The top mapping partners are EU AI Act (15% coverage), ISO/IEC 23894:2023 (15% coverage), 21 CFR Part 211 - Current Good Manufacturing Practice (12% coverage). Use our comparison tool to explore control-level mappings between frameworks.
How do I get started with GS1 Global Standards - Supply Chain Traceability and Data Security compliance?
Start your GS1 Global Standards - Supply Chain Traceability and Data Security compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about GS1 Global Standards - Supply Chain Traceability and Data Security requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 34 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 701 frameworks.
Get Started Free →Free forever — no credit card required