Skip content

Overview

ISO 27701 is the first global privacy management standard. It sets out requirements relating to the implementation of a Privacy Information Management System (PIMS).

Certification to ISO 27701 demonstrates your commitment to privacy and data protection, boosting your reputation and providing a competitive advantage.

Gap analysis

This assessor-delivered activity offers the opportunity to focus on critical, high-risk or weak areas of your system in order to create a certifiable system. It also looks at existing management systems and procedures, and how these can be used within your chosen standard.

Certification

This is typically a two-stage process consisting of a system appraisal and an initial assessment, the duration of which is dependent on the size and nature of your organisation.

To achieve ISO 27701 certification, your organisation must already be ISO 27001 certified. Alternatively, you can implement both ISO 27001 and ISO 27701 at the same time and we can assess your compliance with both standards via an integrated audit.

Contact us to learn more about ISO 27701 certification.

Remote audit

We can deliver your audit remotely through safe and secure platforms and applications. You’ll receive the same high-quality service with several added benefits such as flexibility, fast delivery, and increased access to technical experts.

Surveillance

Once we’ve approved your ISMS and PIMS, we carry out regular surveillance visits to ensure ongoing effectiveness. This gives you, and your top management, the assurance that your systems are on track and continually improving.

Integrated management system assessment

If you’re looking to combine your organisation’s ISMS with an existing management system (such as quality) you could benefit from a coordinated assessment and surveillance programme.

Want to find out more about the ISO 27701 privacy management standard?

Contact our experts

CASE STUDIES

INSIGHTS