CERTIFICATION IN INDIA

ISO 27701:2019 - PRIVACY INFORMATION MANAGEMENT

What is ISO 27701:2019 - PIM?

ISO 27701:2019 is a data privacy extension to ISO 27001. This newly published information security standard provides guidance for organizations looking to put in place systems to support compliance with GDPR and other data privacy requirements.

ISO 27701, also abbreviated as PIMS (Privacy Information Management System) outlines a framework for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy. Privacy information management systems are sometimes referred to as personal information management systems.

Benefits of ISO 27701:2019 - PIM Certification

Facilitates effective business agreements

Builds trust in managing personal information

Provides transparency between stakeholders

Clarifies roles and responsibilities

Supports compliance with privacy regulations

Proven Business Credentials

Who can be certified ISO 27701?

ISO 27701 is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations. It provides guidance for organizations who are responsible for PII processing within an information security management system (ISMS),

Manufacturing Companies

Service Sector

Hospitals

Drugs and Pharma

Educational

Government Organizations

Research Foundation

Engineering

Shipping Industry

Aerospace

Food

Automotive

Telecom

Textile and Apparels

Medical and Test Lab

Software Development

Document required for ISO 27701

The extent of Documented Information differs as per:

Role of Shamkris and Process of ISO 27701 - Certification

Shamkris adopts a results-oriented approach to effective system implementation in the organization. A simple and practical method of system implementation helps organizations increase business efficiency and sustainability. Shamkris supports 100% documentation to obtain a certificate of success in addition to enhanced performance.

The implementation process is described below:

Time Frame

Task

Process

Day 1

GAP Analysis
Certification Body
Selection
Cost Estimates

Week 1

Developing Documents

Week 4

Implementing Management System

Week 8

Internal Audit
MRM
CAPA

Week 10

Certification Body
Audit
N-C Closing

Week 12

Certificate Issued

Year on Year

Yearly Compliance

FAQ

An international management system standard, provides guidance on the protection of privacy, including how organizations should manage personal information, and assists in demonstrating compliance with privacy regulations around the world. Benefits of ISO/IEC 27701: Builds trust in managing personal information.

  1. Prepare.
  2. Establish the context, scope, and objectives.
  3. Establish a management framework.
  4. Conduct a risk assessment.
  5. Implement controls to mitigate risks.
  6. Conduct training.
  7. Review and update the required documentation.
  8. Measure, monitor, and review.