This one-day foundation course provides an overview of the concepts and principles of a Privacy Information Management System (PIMS) based on ISO/IEC 27701. Learn the structure of the standard including its requirements, guidance and controls on the protection of the privacy of Personally Identifiable Information (PII) principals and the relationship of the standard with ISO/IEC 27001 and ISO/IEC 27002.
ISO/IEC 27701 provides companies with a universally accepted global framework to help organisations navigate the complexities of various regulations and intricacies of different jurisdictions.
- Build trust in your company, reduce risks to the privacy rights of data subjects and allow for better management of privacy controls.
- Improve protection from breaches. Organisations can reduce security incidents and its impact as well as prevent any harm to its company reputation.
This course covers the following topics:
- Basics of data privacy and Personal Identifiable Information (PII)
- Benefits of implementing an effective privacy information management system (PIMS)
- Principles of privacy information management system based on ISO 27701:2019
- Structure of ISO 27701 and its relationship with other standards and privacy regulations
- Methods and techniques to define, implement and improve an effective PIMS
ISO 27701:2019 is an extension to the current ISO 27001:2013. Participants should have a thorough knowledge of an information security management system i.e. ISO 27001 and ISO 27002 and experience of implementing the information security management system based on ISO 27001 and ISO 27002.
The course does not include a published version of the standard. If you require a copy, you can purchase from here (opens in a new window).
Upon successful completion of this course, participants will be able to:
- Identify the benefits of implementing a privacy information management system.
- Understand the terminologies used in ISO/IEC 27701.
- Understand the requirements of ISO/IEC 27701 privacy information management.
- Understand the inter-relationship of ISO 27701 with other standards such as 29100, 29151, 27018, and EU general data protection regulation (GDPR).
- Explain the data privacy concept to others and enable organisations to define an effective privacy information management system based on ISO 27701.
Participants who attend the course will be issued with a Statement of Attendance.
What accreditation or recognition does this course have?
This course is non-accredited.
Does this course have any assessment requirements?
As a non-accredited course this course has no assessment requirements. The course contains a number of activities designed to reinforce the key skills and knowledge outcomes.
Which standard is relevant to this course?
ISO/IEC 27701:2019. If you require a copy, you can purchase from here
What other courses are relevant to this course?
There are a range of other courses that are relevant to this course and standard. These include; Implementing an Information Security Management System and Auditing an Information Security Management System.
How do I access my certificate?
Your Statement of Attendance will be sent to you on completion of the course.
Who is the trainer for my course?
All of our trainers and assessors have extensive and current industry experience and qualifications and meet the national requirements for VET trainers.
What if I require assistance in completing this course? For example; Literacy, numeracy, physical, vision or hearing support
We are able to modify some course requirements – please contact customer support to discuss any concerns or support requirements you may have.
Who do I contact in case of any query regarding any of the courses?
For any course-related queries, please email customer support at firstname.lastname@example.org or phone 1 877- 426-0714.
This course is ideal for:
The roles may include but are not limited to privacy managers, privacy officers, information security managers, privacy management staff, risk managers, governance and compliance managers, security operations team, management system auditors, internal trainers, etc.