ISO 27701 is the international standard for “privacy information management systems,” and provides requirements and controls for companies responsible for handling personally identifiable information (PII) with the intent of reducing breaches or loss of the data.
Currently, ISO 27701 is added on top of an existing ISO 27001 management system. In the coming years, however, ISO intends on spinning ISO 27701 off as a standalone certification scheme. Oxebridge can support both conditions.
Oxebridge partners with seasoned, career cybersecurity professionals for its ISO 27001/27701 Implementation Program, to ensure the highest quality system, providing high levels of confidence and dramatically reduced risk.
Oxebridge’s ISO 27001 Implementation Program includes the following:
- Developing the necessary system documentation, policies and procedures
- Developing highly customized Statement of Applicability and defining related controls
- Risk identification and mitigation assistance
- Consulting on necessary controls for PII data security and management
- Training of staff
- Internal audits
- Management review activities
- … and more
To obtain a price quote on ISO 27701 implementation for your organization, click here.
