ISO/IEC 27701 is a data privacy extension to ISO 27001. ISO/IEC 27701 is a privacy extension to ISO/IEC 27001 Information Security Management and ISO/IEC 27002 Security Controls. An international management system standard, it provides guidance on the protection of privacy, including how organizations should manage personal information, and assists in demonstrating compliance with privacy regulations around the world.
It assists organizations to establish systems to support compliance with the European Union General Data Protection Regulation (GDPR) and other data privacy requirements but as a global standard it is not GDPR specific.
It allows an organization to manage and to regularly check the compliance status. This permits a continual improvement of the system to ensure confidentiality protection and address vulnerabilities.
Benefits of becoming certified
The standard takes a comprehensive approach to privacy information management and permits organizations to meet personal information protection requirements.
ISO/IEC 27701 will help:
- Clarify the roles and responsibilities within your organization.
- Build trust in your company’s ability to manage personal information, both for customers and employees.
- Support compliance with GDPR and other applicable privacy regulations.
- Facilitate agreements with business partners where the processing of PII is mutually relevant.
- Builds trust in managing personal information
- Provides transparency between stakeholders
- Facilitates effective business agreements
- Supports compliance with privacy regulations
- Reduces complexity by integrating with the leading information security standard ISO/IEC 27001
Getting started
To obtain certification, you need to implement an effective privacy information management system complying with the requirements of the standard.
Cognicert is a third-party certification body. We can help you throughout the journey, from information security to privacy information management. Our offer includes training, self-assessment, gap analysis and certification.
Contact us to find how we can assist you in becoming an ISO 27701 Certified.