On August 6, ISO published the ISO/IEC 27701:2019 (“ISO 27701”) standard, which lays out the requirements for implementing an organizational program to govern the handling of personally identifiable information (PII), known as a Privacy Information Management System (PIMS). In many ways, the new standard is a melding of the traditional ISO 27001 framework with a host of European Union’s General Data Protection Regulation (GDPR) controls, and it even references GDPR within it. The implications of ISO 27701 could be quite significant on the world of privacy compliance.
Dedicated Forum to help removing adware, malware, spyware, ransomware, trojans, viruses and more!
More Stories
Automated application scanning: handling complicated logins with AppScan (only!)
New cybersecurity legislation to amend the Health Information Technology for Economic and Clinical Health (HITECH) Act – an analysis of H.R. 7898
AppSec Bites: A Podcast on Balancing Speed and Thorough AppSec Coverage (Part 1)