ISO/IEC 27701 is an extension of the requirements of ISO 27001 and the ISO 27002 codes of practice. This new standard is based on the requirements, controls and objectives of ISO/IEC 27001 (Information Security Management). It has been developed by the International Standardization Organization (ISO) and the International Electrotechnical Commission (IEC) for organisations to manage the security and privacy of the personal information they handle in their processes.
WHAT ARE THE OBJECTIVES ACCORDING TO ISO/IEC 27701?
WHO IS THE STANDARD FOR?
This standard is aimed at any organisations that have Information Security Management Systems certified under ISO/IEC 27001:2013. Organisations that do not have Security Management Systems will have to implement ISO 27001 and ISO 27701 together, as the latter is an extension of ISO 27001. This certification is useful for any company, regardless of size or activity, including public sector, private sector, governmental or non-profit organisations.
WHY APPLUS+ CERTIFICATION?
Applus+ Certification is an independent and prestigious entity that aims to help organisations achieve their commitment to continuous improvement.We analyse the needs of our clients so that our auditors, specialists in each sector of activity, can provide a service that provides maximum value when assessing the compliance of your organisation.Our teams develop specific certification plans based on our clients' structure, processes and activities.Our international presence, extensive product portfolio and accreditations enable us to provide a global, expert service tailored to your organisation's needs.