ISO 27701(PIMS)

ISO/IEC 27701:2019
Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines

 

한마디!

간단히 요약해보면 아래와 같다.

(국내 인증) 보안 : ISMS(Information Security Management System)

(국제 인증) 보안 : ISO 27001(Information Security Management System)

(국내 인증) 개인정보보호 : ISMS-P(Personal Information & Information Security Management System, 구 PIMS)

(국제 인증) 개인정보보호 : ISO 27701(Privacy Information Management System)

 

27701은 27001의 확장 버전이라서, 27001만 단독으로 인증 불가

달리 말하면 이미 27001 인증이 있다면 27701은 인증받기 쉽다?

(PIMS was built on top of 27001 because privacy and security go hand-in-hand.)

 

유럽 GDPR(General Data Protection Regulation)

미국 캘리포니아주 CCPA(California Consumer Privacy Act)

적용 받는 기업이라면 챙겨봐야할 국제표준.

 

(참고) https://www.iso.org/standard/71670.html

ISO/IEC 27701:2019

(참고) https://www.iso.org/news/ref2419.html

Tackling privacy information management head on: first International Standard just published

(참고) https://blog.naver.com/n_privacy/221673728908

개인정보보호를 위한 새로운 글로벌 표준 ISO/IEC 27701

(참고) http://bsiblog.co.kr/archives/13820

[ISO 27701] 프라이버시 정보 관리를 위한 최신 국제표준 발행 + 백서 제공 | BSI Blog

(참고) PIMS Introductory Video(Microsoft)

https://www.microsoft.com/en-us/videoplayer/embed/RE3uaQJ

https://www.microsoft.com/en-us/videoplayer/embed/RE3uaQJ

(참고) Privacy Information Management System ISO/IEC 27701(Microsoft) - PDF

https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE3uDwE

 

(참고) Privacy matters, Managing personal information with ISO/IEC 27701(BSI)

https://www.bsigroup.com/globalassets/localfiles/en-gb/data-protection/bsi_privacy_matters_white_paper-web.pdf

 

(참고) https://youtu.be/upNfVWuSnG8

ISO 27701 - Privacy Information Management System | Data Protection