Skip to Main Content
Select regional store:
Learn for less: Save 10% on high-quality foundation and auditor training. Find out more
ISO/IEC 27701:2019: An introduction to privacy information management

ISO/IEC 27701:2019: An introduction to privacy information management

SKU: 5510
Authors: Alan Shipman and Steve Watkins
Publishers: ITGP
Format: PDF
ISBN13: 9781787782006
Pages: 50
Published: 31 Jan 2020
Availability: Available now
Format: ePub
ISBN13: 9781787782013
Published: 31 Jan 2020
Availability: Available now
Format: Audiobook
ISBN13: 9781787783881
  • An ideal guide for anyone wanting to implement a PIMS (personal information management system) and understand how it can benefit their organization
  • Gives a clear and concise overview of the principles of personal information management and ISO/IEC 27701
  • Written by an acknowledged expert in the field of privacy and personal information – the project editor of ISO/IEC 27701 

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our training sales team on +1 877 317 3454.

Price: $14.95

An ideal primer for anyone implementing a PIMS based on ISO/IEC 27701

ISO/IEC 27701:2019 is a privacy extension to the international information security management standard, ISO/IEC 27001. It has been designed to integrate with ISO 27001 to extend an existing ISMS (information security management system) with additional requirements, enabling an organization to establish, implement, maintain, and continually improve its PIMS.

ISO 27701 provides guidance on the protection of privacy, including how organizations should manage personal information, and helps demonstrate compliance with privacy regulations around the world, such as the EU's GDPR (General Data Protection Regulation).

ISO/IEC 27701:2019: An introduction to privacy information management offers a concise introduction to the Standard, aiding those organizations looking to improve their privacy information management regime, particularly where ISO/IEC 27701:2019 is involved. It is intended for:

  • Individuals looking for general information about privacy information management
  • Organizations implementing, or considering improving, a PIMS, particularly where the use of ISO/IEC 27701:2019 is being considered

It will enable you to understand the basics of privacy information management, including:

  • What privacy information management means
  • How to manage privacy information successfully using a PIMS aligned to ISO/IEC 27701
  • Key areas of investment for a business-focused PIMS
  • How your organization can demonstrate the degree of assurance it offers with regard to privacy information management

This guide will prove useful throughout a number of stages in any privacy information management project – buy your copy today!

About the author

Alan Shipman

Alan Shipman is the managing director of Group 5 Training Limited. He was the project editor for ISO/IEC 27701:2019 and is also the chair of IST/33/5, which is responsible for the UK’s contributions to the work of ISO/IEC JTC1/SC27/WG5, which deals with identity management and privacy technologies.

Alan has more than 30 years’ experience managing personal information, both as a data processor for a service organization and as a data controller. He is a regular speaker at conferences, covering all aspects of information management. Alan has been involved in the development of BS 10008 throughout its life (first published as guidance in 1996), which deals with the management of electronic information of all types, including the conversion of paper-based information to electronic forms. His experience includes advising organizations in both the public and private sector on the implementation of BS 10008.

Steve Watkins

Steve Watkins is an executive director at GRC International Group plc. He is a contracted technical assessor for UKAS, advising on its assessments of certification bodies offering ISMS/ISO 27001 and ITSMS/ISO 20000-1 accredited certification, and also undertakes information security assessments of forensic science laboratories seeking accreditation to the Forensic Science Regulator’s codes of practice and conduct.

Steve is a member of ISO/IEC JTC 1/SC 27, the international technical committee responsible for information security, cybersecurity, and privacy standards, and chairs the UK National Standards Body’s technical committee IST/33 (information security, cybersecurity, and privacy protection) that mirrors it. He is also involved with technical committees: RM/1 (risk management) and RM/1/-/3 (responsible for BS 31111, providing guidance for boards and senior management on cyber risk and resilience); IST/060/02 (IT service management) and IDT/001/0-/04 (data protection).

Customer reviews

This website uses cookies. View our cookie policy