Get ISO/IEC 27701 : 2019 Certification

There is an increasing need for a code of conduct, or standard, to demonstrate data privacy  compliance and certification in the wake of the EU’s General Data Protection Regulation (GDPR), USA’s CCPA, South Africa’s POPIA, Brazil’s LGPD, the Australian Privacy Principles, and many other similar privacy laws and regulations being drafted around the world.

ISO 27701

Process cycle for ISO 27701: 2019 certification

GAP Analysis

What is ISO 27701?

The ISO 27701 standard is an extension of the ISO 27001 standard for information security, but provides specific privacy control measures.

Why is this standard relevant ?

This standard’s goal is to give enterprises a workable framework so they can upgrade their current ISMS (Information Security Management System) to a PIMS (Privacy Information Management System).

Who should opt for ISO 27701 standard ?

Any business which wants to demonstrate that it is in charge of its Privacy practices and has aligned to the international standard for Privacy Compliance should opt for ISO 27701: 2019 .

Is there any pre requisites for achieving ISO 27701 ?

In order to start implementing ISO 27701, you must first understand and implement the ISO 27001 standard.

Can ISO 27701 guarantee GDPR compliance?

While ISO 27701 certainly creates the foundation for complying with the majority of global privacy regulations, but all regulations have some specific requirements which can on be addressed on a case to case basis.
So the quick answer is “no,” but it might still be useful to you as you work toward GDPR compliance. Together, ISO 27001 and ISO 27701 provide organisations with a mechanism to strengthen their information security management systems and get privacy standard certification. While ISO 27001 and ISO 27701 provide a strong foundation for organisations attempting to comply with GDPR regulations, they do not address every facet of the regulation.