ISO 2770110
ISO/IEC 27701 privacy information management extensions to ISO/IEC 27001 for PII controllers and processors.
Requirements in this framework
- Breach handling and privacy incident response
- Consent and legal basis support
- Controller obligations
- Data subject request handling
- Monitoring and continual privacy improvement
- PII inventory and processing records
- Privacy information management governance
- Privacy risk and control integration
- Processor obligations
- Third-party privacy assurance