ISO publishes first International Standards for privacy information management
The International Organization for Standardization has published the first International Standards for privacy information management. ISO/IEC 27701 specifies requirements “for establishing, implementing, maintaining and continually improving a privacy-specific information security management system,” ISO said in the announcement. “In other words, a management system for protecting personal data (PIMS).” CNIL Head of the Technology Experts Department Matthieu Grall and Microsoft Corporate Vice President and Deputy General Counsel of Privacy and Regulatory Affairs Julie Brill were among those who participated in the development of the standards. “We applaud the ISO/IEC technical committee for developing this groundbreaking standard for privacy so that organizations of all sizes, jurisdictions, and industries can effectively protect and control the personal data they handle,” Brill said.