ISO/IEC 27701:2019 Lead Implementer Professional Training Course

Level Lead implementer Duration 5 days

Available to book: Public classroom View dates and book now

Managing personal information in compliance with the evolving regulatory landscape is complex but cannot be ignored. The protection of an individual’s personal information is one of their fundamental human rights. Laws exist around the world to protect these rights in an environment where business and data related to personal lives are becoming increasingly globalized. Implementing the privacy controls should enable an organization to document evidence on of how it handles the processing of personal information.

ISO/IEC 27701:2019 specifies the requirements and provides guidance for implementing a personal information management system (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management, within the context of your organization.

By attending our five-day course, you will understand how to implement the principles of ISO/IEC 27701:2019 and how to assess the effectiveness of the PIMS controls in your organization. It will help you understand how the implementation of ISO/IEC 27701 provide the basis of an effective PIMS and provides guidance for personally identifiable information (PII) controllers and/or processors, processing PII.

With the full support of a world-class BSI tutor, you’ll learn about ISO/IEC 27701:2019 common terms and definitions, as well as the how to implement the key concepts and requirements.

How will I benefit?

The course will help you to:

Increase your knowledge of the requirements and guidance contained within ISO 27701, from an implementation perspective.
Understand the key principles and rights of data subjects as per EUGDPR and relate with the draft Personal Data Protection Act (2018) proposed in India.
Inform your organization’s senior management of the requirements of ISO/IEC 27701 to help them decide the next steps to take
Understanding what areas of the standard should be audited, and techniques and approaches to consider
Establishing an understanding of the issues, organizations face when maintaining and improving processes in a PIMS framework.

This program aims to help delegates to gain:

Knowledge on:
- Interpret key requirements and guidance of ISO/IEC 27701 from both a PII controller and processor implementation perspective
- Understand the key principles and rights of data subjects as per EUGDPR
- Recognize a typical framework for extending your ISO/IEC 27001 ISMS to include specific requirements and guidance for protecting personally identifiable information (PII) and implementing a PIMS
- Identify the benefits to your organization of implementing an ISO/IEC 27701 PIMS
Skills to:
- Implement the key requirements and guidance of ISO/IEC 27701
- Conduct a gap analysis of your organization’s current compliance with the requirements of ISO/IEC 27701
- Conduct audits in all aspects of PIMS processes
- Maintain and improve the current level of implementation of the PIMS, in line with the principles of EUGDPR.
Anyone involved in planning, implementing, maintaining or supervising a Personal Information Management system (PIMS) based on ISO/IEC 27701 or EUGDPR. The course is equally relevant to PII controllers and PII processors.

Prerequisites:

You must already have a good knowledge of implementing an ISMS based on ISO/IEC 27001 and ISO/IEC 27002 and be looking to extend your ISMS to include management of privacy.

A good knowledge of PIMS requirements and terminology is highly recommended.

You should have previously attended an ISO/IEC 27001 requirements course.
- Delegate workbook
- Lunch and refreshments (Applicable for classroom only)
- On completion, you'll be awarded an internationally recognized BSI Training Academy certificate

Let's shape your organization's future together

Reach out and see how we can help guide you on your path to sustainable operational success.

Get in touch