The following checklists include generic questions that apply to information protection in almost any organization.