Search in Boards

Search the entire site bulletin board

Information Security

Contact Us

Tel. +82 2 6749 0701

AM 9:00 ~ PM 6:00

Saturday,Sunday,Holiday :
Days Off

02.6749.0711
info@igcert.org

Information Security


❉ ❉ ❉

ISO/IEC 27701

Privacy Information Management

As data collection and processing increases, there is a growing demand for how data should be managed and processed to reduce privacy threats.

This became the background for the establishment of the international standard ISO/IEC 27701.

ISO/IEC 27701 is an extension of ISO/IEC 27001 and ISO/IEC 27002, and provides requirements and guidelines for establishing, implementing, maintaining and continually improving PIMS (Privacy Information Management System) for organizational privacy management.

It also provides guidance on PII controllers and PII processors that are responsible and responsible for the processing of Personally Identifiable Information (PII).

ISO/IEC 27701 is for all type of organizations, including public and private enterprises, government agencies and non-profit organizations, including PII controllers and/or PII processors that process PII within the Information Security Management System (ISMS) based on ISO/IEC 27001.
  • ISO/IEC 27701:2019 Standard

    ISO/IEC 27701:2019 Standard

    • 1. Scope
    • 2. Normative references
    • 3. Terms, definitions and abbreviation
    • 4. General
    • 5. PIMS-specific requirements related to ISO/IEC 27001
    • 6. PIMS-specific guidance related to ISO/IEC 27002
    • 7. Additional ISO/IEC 27002 guidance for PII controllers
    • 8. Additional ISO/IEC 27002 guidance for PII processors
  • The importance of ISO/IEC 27701

    The importance of ISO/IEC 27701

    • 1. Build trust in your personal information management skills
    • 2. Clarification of roles and responsibilities within the organization
    • 3. Prevention of violations by improving internal capabilities and improving processes
    • 4. Provide established controls and transparency for privacy management
    • 5. Facilitating consensus with business partners
    • 6. Easily integrate with leading information security standard ISO/IEC 27001
  • Estimated Effectiveness of ISO/IEC 27701

    Estimated Effectiveness of ISO/IEC 27701

    • 1. Coordinate multiple regulatory requirements using a universal group of operational controls to enable consistent and efficient implementation.
    • 2. PIMS can reduce the cost of auditing certification by evaluating it against multiple regulatory requirements.
    • 3. Since most clients are spread around the world, it is recommended to use ISO international standards to manage compliance.

    This reliance on compliance increases the importance of certification to standards.

    You can benefit from partners and suppliers, especially when dealing with large amounts of sensitive data.

  • IGC’s Competency

    IGC’s Competency

    IGC has been accredited for ISO/IEC 27701 by IAS, an Accreditation Body in the United States, and provides certification services for quality management systems.

    IGC has a lot of knowledge and rich experience in certification activities for quality management systems in various industries, including information security.

    IGC has up-to-date knowledge of a wide range of specific scopes and legal requirements in major markets around the world, and provides the knowledge and services to support your entire global operation.

Related Services from IGC

  • 01Quality

  • 02Environment

  • 03Health and Safety

  • 04Medical Devices

  • 05Food

  • 06Energy

  • 07Information Security

  • 08Anti-Bribery

  • 09Education

  • 10Business Continuity

  • 11Cosmetics

  • 12Customer Satisfaction

  • 13Social Accountability