Home Our Solutions ISO 27701 Implementation

ISO 27701 Implementation

ISO 27701 provides specific requirements and guidance for continuously establishing, implementing, maintaining, and improving a Privacy Information Management System (PIMS) as an extension of the Information Security Management System (ISMS) defined in ISO 27001.

ISO 27701 differs slightly from other ISO standards because ISO 27001 certification is required first. Additionally, organisations that take ISO 27701 will create evidence to demonstrate GDPR compliance.

For more information see our information portal www.27701.pt.

Download the Roadmap Brochure (PDF)

GAP Analysis

Conduct a GAP analysis of the existing ISMS to the requirements of ISO 27701 and produce an action plan on how to deal with the identified gaps.

Mapping Personal Data

Conduct a mapping of personal data collected by the organisation to understand their scope and how they are used and shared with Processors.

Determine Org's Role

Determine the organisation's role as Controller and / or Processor based on internal or external factors relevant to its context, such as privacy legislation, regulations, court decisions or applicable contractual requirements (among others).

Documentation

Review and update the privacy policies to ensure that they include the necessary information.

Develop policies and procedures applicable to the organisation's role.

Implementation e Operacionalization

Start the implementation of the plan and carry out the necessary activities in the revised ISMS, including, among other, risk assessment, measurement and monitoring, internal audit, management review. Start the operation of the new system and assess its compliance.

How to maintain ISO 27701 compliance?

Privacy management does not end with ISO 27701 certification. It is important that organisations maintain a methodical and ongoing process that supports evidence of how they handle the processing of personal data.

Devoteam Cyber Trust solutions enable organisations to continuously improve their ISO/IEC 27701 privacy management system.

Consulting solutions

360º Security
Review

ISO 27001
Implementation

ISO 27701
Implementation

Contact us.

Headquarters

Edifício Atrium Saldanha
Praça Duque de Saldanha, nº 1, 2º andar
1050-094, Lisboa | Portugal
T: +351 21 33 03 740
E: info@integrity.pt

And we are present in 18 more countries across EMEA.

Name

E-mail

Message

By ticking this box, you will be declaring that you have read and agree to the Privacy Policy of INTEGRITY S.A., and that you may be contacted via email regarding your request. The personal data entered on this website is collected, used, recorded, and processed in accordance with the General Data Protection Regulation (GDPR) and our Privacy Policy.

Cookie Consent X

Devoteam Cyber Trust S.A. uses cookies for analytical and more personalized information presentation purposes, based on your browsing habits and profile. For more detailed information, see our Cookie Policy.