DIN Standards Committee Information Technology and IT Applications
Privacy information management system per EN ISO/IEC 27701 - Refinements in European context
Abstract
This document specifies refinements for an application of EN ISO/IEC 27701 in a European context. This document is applicable to the same entities as is ISO/IEC 27701: all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations, which are PII controllers and/or PII processors. An organization can use this document for the implementation of the generic requirements and controls of EN ISO/IEC 27701 according to its context and its applicable obligations. Certification criteria based on these refinements can provide a certification model under ISO/IEC 17065 for processing operations performed within the scope of a privacy information management system according to EN ISO/IEC 27701, which can be combined with certification requirements for EN ISO/IEC 27701 under ISO/IEC 17021.
Begin
2025-03-26
WI
JT013092
Planned document number
prEN 17926 rev
Responsible national committee
NA 043-04-13 GA - DIN/DKE Joint working committee Cybersecurity
Responsible european committee
CEN/CLC/JTC 13/WG 5 - Data Protection, Privacy and Identity Management
previous edition(s)
Privacy Information Management System per ISO/IEC 27701 - Refinements in European context
2023-11
