Home Our Solutions ISO 27701 Assessment & Implementation
ISO 27701
What is ISO 27701? ISO 27701 is a privacy extension of the international standard for information security management, ISO 27001, for the management of privacy information (personal data). ISO 27701 details the requirements and provides the necessary guidance for establishing, implementing, maintaining, and improving a Privacy Information Management System (PIMS).
Like the ISO 27001 standard, ISO 27701 does not expect organisations to adopt every single control in all situations. Instead, it requires organisations to understand the specific context in which they process personal data and adjust the specific set of controls and their implementation appropriately to their personal data processing activities.
For more information see our information portal www.27701.pt.
One of the first steps towards ISO/IEC 27701 certification is conducting a compliance assessment. At this stage, we evaluate the current state of your organisation’s against the standard’s requirements and controls. The assessment includes:
GAP Assessment: Understanding the business and determining the gap between the standard’s requirements and the organisation’s practices to allocate resources for an effective and efficient implementation of the PIMS.
After the assessment, we begin the implementation phase, where we adjust or propose processes, policies, and controls to meet the standard. In this way, we define the following roadmap to achieve ISO 27701 compliance:
Ensure compliance with ISO 27701 and protect your company's data. Contact us to get started!
