It has three basic components: confidentiality, integrity and availability. Confidentiality refers to the protection of sensitive information from unauthorised disclosure. Integrity means safeguarding the accuracy and completeness of information and computer software. Availability relates to ensuring that information and vital services are available to users when required.