CHAPTER 6: CERTIFICATION
The first point to clarify is that certification to ISO/IEC 27701 will not be accredited in accordance with ISO/IEC 17065 and hence is not an ‘EU GDPR certification’ as referenced to in Articles 42 and 43 of the Regulation. This is because ISO/IEC 17065 sets out the requirements for organisations certifying products and services. As ISO/IEC 27701 is an ISO management system standard (MSS), the appropriate accreditation standard is ISO/IEC 17021. Certification to ISO/IEC 27701 will provide an assurance that management processes are in place to protect privacy, with some important caveats as described in this chapter. The assurance that ISO/IEC 27701-accredited certification will provide to the supply chain, enabling clients ...
Get ISO/IEC 27701:2019: An introduction to privacy information management now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
