ISO/IEC 27701 is designed to specify requirements and provide guidance for establishing, implementing, maintaining and continually improving a PIMS in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of your organization. A PIMS framework will help you to operate and maintain processes for your organization whilst providing assurance to your stakeholders.
This one-day course will help you understand the principles of ISO/IEC 27701 and the changes required to extend your ISMS. It will help you understand how the requirements of ISO/IEC 27701 will provide the basis of an effective PIMS and provides guidance for PII controllers and/or PII processors.
With the full support of a world-class BSI tutor, you’ll learn about ISO/IEC 27701 common terms and definitions, as well as the key concepts and requirements.
How will I benefit?
This course will help you:
- Understand the benefits of having an effective PIMS in place
- Understand the content of ISO/IEC 27701, both requirements and guidance and how it will improve your processing of PII
- Determine the effectiveness of an organization’s PIMS
- Understand how the standard maps to the privacy framework and principles in other ISO/IEC standards (e.g. 29100, 27018 and 29151) and the EU General Data Protection Regulation (GDPR)
- Inspire customer and partner trust
- Protect your organization’s reputation
- Inform your organization’s senior management of the requirements of ISO/IEC 27701 to help them decide the next steps to take
Who should attend?
Anyone involved in the planning, implementation and maintenance of an ISO/IEC 27701 PIMS, including PII controllers and PII processors.
Prerequisites
We recommend you have experience implementing an ISMS based on ISO 27001 and ISO 27002 and are looking to extend your ISMS to include privacy information management.
You should have good knowledge of PIMS requirements and terminology.
We also recommend delegates understand whether a PIMS is currently employed in their organizations.
What will I learn?
Upon completion of this training, you’ll be able to:
- Recall the ISO/IEC 27701 terms and alternative terms used elsewhere
- Explain the background of ISO/IEC 27701 and its intended outcome
- Identify the specific requirements and guidance in ISO/IEC 27701
- Identify key concepts and structure of ISO/IEC 27701
What's included?
- Detailed course notes and lunch provided
- On completion, you'll be awarded an internationally recognized BSI Training Academy certificate
Prior knowledge and learning
We recommend you have experience implementing an ISMS based on ISO 27001 and ISO 27002 and are looking to extend your ISMS to include privacy information management.
You should have good knowledge of PIMS requirements and terminology.
We also recommend delegates understand whether a PIMS is currently employed in their organizations.