ISO-IEC 27701 2019

PRIVACY INFORMATION MANAGEMENT SYSTEMS

Sustainability,
Social and ESG Compliance Leaders

Company:
Scope:
Issue Date:
Expire Date:
Next Audit:
Certification:
Status:

Apps

Contact

Room 802, building 2, No.168 TaiHong Road, Minhang District, Shanghai, China

+86 21 54760625

Room 701, Block 1, Tianshan Road 641, Baimao technology park, Shanghai, China 20001

+86 21 51088618

[email protected]

An organization complying with the requirements in this standard will generate documentary evidence of how it handles the processing of PII. Such evidence can be used to facilitate agreements with business partners where the processing of PII is mutually relevant. This can also assist in relationships with other stakeholders. The use of this standard in conjunction with ISO/IEC 27001 can, if desired, provide independent verification of this evidence.

Clarifies roles and responsibilities
Supports compliance with privacy regulations
Facilitates effective business agreements
Builds trust in managing personal information
Provides transparency between stakeholders
Reduces complexity by integrating with the leading information security standard ISO/IEC 27001

Management System: Set of interrelated or interacting elements of an organization to establish policies and objectives and processes to achieve those objectives.

Personally Identifiable Information (PII): Any information that (a) can be used to establish a link between the information and the natural person to whom such information relates, or (b) is or can be directly or indirectly linked to a natural person.

Privacy Information Management System (PIMS): Information security management system which addresses the protection of privacy as potentially affected by the processing of PII.

ISO/IEC 27701:2019: This International Standard specifies requirements and provides guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of the organization.

The requirements of standard are applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations, which are PII controllers and/or PII processors processing PII within an Information Security Management System (ISMS).

We are accredited by the Greek Accreditation Board (ESYD - National Accreditation Board), member of EA-MLA and IAF for Information Security Management System (ISMS).
We have strong and experienced staff and associates, who as auditors and / or technical experts carry out audits of high added value for your company.
We evaluate audit reports, monitor the long-lasting improvement of the Management System of your company, plan tailored audits and keep you updated on any evolution regarding your activities.

Please read the attachments for more information

EUROCERT ISO IEC 27701 EN