About ISO/IEC 27552 Privacy Information Management

ISO/IEC 27552 is a privacy extension to ISO/IEC 27001 Information Security Management and ISO/IEC 27002 Security Controls that is currently being developed. It aims to provide guidance on the protection of privacy, including how organizations should manage personal information, and assists in demonstrating compliance with privacy regulations around the world. Anticipated benefits include:

  • Build trust
  • Provide transparency between stakeholders
  • Support collaborative working
  • Facilitate effective business agreements
  • Clarify roles and responsibilities
  • Reduce complexity by integrating with the leading information security standard ISO/IEC 27001