Provides guidance for organisations responsible for processing Personally Identifiable Information (PII) within the information security management system.
ISO/IEC 27701:2019 is a data privacy extension of ISO/IEC 27001. It guides organisations that want to set up systems to support compliance with GDPR, DPA and other data privacy requirements. ISO/IEC 27701 Privacy Information Management System, abbreviated as PIMS, provides guidance for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy.
This standard is a great way to demonstrate to customers, external and internal, that effective systems are in place to support compliance with DPA, GDPR and other relevant privacy legislation.
The ISO/IEC 27001 Information Security Management System standard ensures the confidentiality, integrity and availability of information as well as legal compliance. More than 70,000 organisations worldwide have acquired ISO/IEC 27001 certification to date, proving that certification is an essential part of protecting your most vital assets.
ISO/IEC 27701 cannot be accredited alone! Organisations wishing to obtain ISO/IEC 27701 certification will either need to have an existing ISO 27001 certification or apply ISO/IEC 27001 and ISO/IEC 27701 together as a single application audit.
ISO/IEC 27701 applies to organisations of all types and sizes, including public and private companies, government agencies and non-profit organisations.
Benefits of ISO/IEC 27701 Certification;
- Provides the extension of the information security management system for Privacy Information Management,
- Provides an effective risk assessment in personal data management,
- Provides confidence in the management of personal information,
- Ensures sustainability in compliance with data protection legislation,
- Provides transparency among stakeholders,
- Defines roles and responsibilities,
- Efficiency increases in employment contracts,
- Contributes to the reputation of institutions,
- It provides integrity and reduces complexity in conjunction with
- ISO/IEC 27001, the foremost concern Security Standard.
Services we offer under ISO/IEC 27701:
- Certification Audit
- Pre- Assessment
- GAP Analysis
- Internal Audit
- Supplier Audit