With almost daily stories of new instances of consumer and patient privacy information breaches, an international standard that addresses privacy data management couldn't come soon enough.
Just weeks ago the International Organization for Standardization published ISO/IEC 27701:2019 Security Techniques as an extension to ISO/IEC 27001, the standard published in 2013 to address information technology security techniques and management systems.
This standard is the newest addition to the 27000 family, which helps organizations manage the security of their information assets. 27701:2019 details requirements and guidelines for organizations to establish, implement, maintain and continually improve their Privacy Information Management System (PIMS) in regards to the privacy information they generate, maintain and process.
Local and national laws and regulations with increased requirements and penalties for breaches are being put in place that affect organizations globally. Virtually every organization generates and maintains various types of privacy information, such as credit card information, social security numbers and personal health data, making protection of that information a considerable business concern.
Standard 27701:2019 is applicable to any type of organization that processes privacy information, including government, the private sector, public companies and non-profits.
View the informative section and access links to purchase the standard through the ISO website: