ISO/IEC 27552 Privacy Information Management

ISO/IEC 27552 Privacy Information Management

Visibility and trust for personal information

Visibility and trust for personal information

Red Overlay
Red Overlay

About ISO/IEC 27552 Privacy Information Management

ISO/IEC 27552 is a privacy extension to ISO/IEC 27001 Information Security Management and ISO/IEC 27002 Security Controls that is currently being developed. It aims to provide guidance on the protection of privacy, including how organizations should manage personal information, and assists in demonstrating compliance with privacy regulations around the world. Anticipated benefits include:

  • Build trust
  • Provide transparency between stakeholders
  • Support collaborative working
  • Facilitate effective business agreements
  • Clarify roles and responsibilities
  • Reduce complexity by integrating with the leading information security standard ISO/IEC 27001


ISO/IEC 27552 development timeline

ISO/IEC 27552 is being drafted by the ISO/IEC Working Group responsible for ‘Identity Management and Privacy Technologies’.

BSI is appointed by the UK Government as the National Standards Body and represents the UK interests at both the ISO and the IEC. The following shows the intended development timeline for its publication as an International Standard.


Keep updated on ISO/IEC 27552 developments

Do you want to be updated on the progress with ISO/IEC 27552? Sign up to be added to our mailing list for updates on privacy products and developments.