Why do we need ISO 27701?
If you’re looking for ISO 27701, you likely have a Customer requesting you hold this Certification. Published in 2019, this Standard is an extension to ISO 27001. This extension is optional and focuses specifically on Privacy management, which the existing ISO 27001 standard does not address. With the introduction of the GDPR in 2016 and consequently an update to the Data Protection Act in 2018. We saw a significant increase in penalties. As a result, there is increasing pressure for appropriate controls to ensure that Privacy is maintained lawfully. Certification to this Standard gives your customers confidence that you handle personal data under the Standard and, consequently, the law. We are ISO 27701 Consultants and are here to help you.
What is the difference between ISO 27001 and ISO 27701?
ISO 27001 is the Standard for an Information Security Management. ISO 27701 requires you to have ISO 27001 too. If you already have ISO 27001, you can implement ISO 27701 as a bolt-on. If you do not have ISO 27001 and are looking to implement both, we would strongly recommend an integrated approach. Integration drives efficiencies and overall reduces cost.
It is important to note that this Standard is not a standalone management system. However, our qualified and experienced Consultants can implement the requirements of ISO 27701 alongside ISO 27001.
How can Global QA help us achieve ISO 27001?
We are here to hold your hand throughout the process. With our experience, your system is tailored to your business, addressing all requirements while keeping things simple. We will ensure that all of your Data Flows are mapped correctly with the added value we bring. In addition, we will ensure that you have an accurate Data Inventory and that your Data Protection Impact Assessments are up to date. A Consultant helps to ensure your Privacy Policies (when produced) are accurate and transparent. Our Consultants are thorough and do the job properly!
Why should we use Global QA to help us gain Certification?
All significant UKAS certification bodies in the UK recognise and approve us. Our wealth of experience means we can provide all of our clients with a 100% guarantee of success and feel self-assured in doing so. While offering a 100% guarantee of success, we work to a fixed fee, so there are no hidden charges.
Contact us today to discuss the privacy management system requirements for your business.
ISO 27701 PDF fact sheet download
To learn more about ISO 27701, click here.