ISO/IEC 27701 Privacy Information Management Systems Certification

ISO/IEC 27701 standard is published in August 2019, and it is the first international standard that deals with privacy information management. The standard will assist organizations in establishing, maintaining, and continually improving a Privacy Information Management System (PIMS) by enhancing the existing ISMS based on the requirements of ISO/IEC 27001 and ISO/IEC 27002 and the guidance of ISO/IEC 27002. It can be used by all types of organizations that are PII controllers and/or PII processors processing PII within an ISMS, irrespective of their size, complexity, or the country they operate.

ISO/IEC 27701:2019 helps in implementing, maintaining, and continually improving privacy protection measures, ensuring compliance with General Data Protection Regulation (GDPR) and other global data privacy laws. Organizations can leverage this standard to ensure they are aligning with international standards for information security management and privacy, strengthening their efforts in improving privacy information management and maintaining the required requirements and guidelines for data protection.