ISO/IEC FDIS 27701 Review

27/Dec/2024

Information security, cybersecurity and privacy protection — Privacy information management systems — Requirements and guidance

The updated version of the Privacy Information Management System, which will replace ISO/IEC 27701:2019, is now in the approval phase. The final version is expected to be published in Q1 of 2025.

The standard specifies requirements for establishing, implementing, maintaining and continually improving a privacy information management system (PIMS), and is applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations

In anticipation of the updated version being released, privacy practitioners — including all controllers and processors responsible and accountable for PII processing — would be prudent to review the draft and use it to review and update existing policies, roles and responsibility descriptions, and risk management approaches.

PACC is THE voice for privacy and access.

PACC is Independent • Non-profit • Non-partisan • Non-government

PACC is dedicated to the development and promotion of the access-to-information, information privacy, and data governance profession across the private, non-profit and public sectors.

PACC is the certifying body for access and privacy professionals, and engages in outreach efforts to advance awareness about access, privacy, and data protection.

None of the content herein may be used or reproduced in any manner for the purpose of training AI technologies or systems.

Information security, cybersecurity and privacy protection — Privacy information management systems — Requirements and guidance

Footer

Recent Posts