ISO/IEC 27701:2019 Consulting

Home

ISO/IEC 27701:2019 Consulting

Consulting services for the preparation of ISO/IEC 27701:2019 standards

ISO/IEC 27701:2019 is a standard to assure the organization's stakeholders, such as customers, regulators, and partners, that the organization has high standards for handling personal data.

ISO/IEC 27701:2019 is an extension of ISO/IEC 27001, therefore any organization wishing to be accredited to this standard must first pass ISO/IEC 27001.

The following consulting procedures are in place to enable organizations to comply with ISO 27701:2019.

01 Start the project and structure the working group

Alphasec will provide guidance on how to set up a PIMS system and organize an organizational structure to manage security.

02 Assess the risks

AlphaSec will advise the PIMS working group to assess personal data security vulnerabilities. (Risk Assessment)

03 Develop a risk mitigation plan

Alphasec will advise the PIMS working group on the Risk Treatment Plan.

04 Establish a personal information security policy and related supporting documents

Alphasec will advise and recommend on the preparation of the Personal Data Security Policy documentation and other supporting documents, as well as advise the PIMS working group on how to improve the paper's amendments based on their operational and operational nature, if necessary.

05 Document the processes of the PIMS system.

Alphasec will provide consulting on documentation related to PIMS processes.

06 Monitoring the operation of the PIMS system, management review of the PIMS system, and corrective action

Alphasec will advise the PIMS Working Group and other relevant functions on the activities related to the check and act processes in the PIMS Process Model PDCA.

07 Final preparation

Alphasec will collaborate with the PIM Working Group to finalize the PIMS prior to ISO 27701 certification.