Turning your ISMS into a privacy powerhouse
ISO 27701 is the international standard for privacy information management. It extends ISO 27001 to cover personal data, helping you build a management system that doesn’t just protect information but also handles privacy obligations head-on. Think of it as the missing link between information security and data protection laws like GDPR.
If you’ve already built your ISMS with Instant 27001, ISO 27701 is the smartest way to expand it. It uses the same foundation and adds privacy-specific roles, responsibilities, and controls. With our optional ISO 27701 add-on, you can prove to customers, regulators, and partners that you’re serious about both security and privacy, without building a second system from scratch.
Benefits
The ISO 27701 add-on is designed to upgrade Instant 27001 to function as a PIMS, by providing:
- 6 additional requirements for existing ISO 27001 clauses (chapters 4 thru 10)
- 31 additional controls for PII controllers (Annex A.1)
- 18 additional controls for data processors (Annex A.2)
- 29 implementation guidelines for existing ISO 27001 Annex A controls (Annex A.3)
- Implementation instructions for all additional controls
- Per control an indication of how much extra work is imposed for organizations that already have Instant 27001 in place
- All needed sample documents
- An extension to the risk register with new privacy risks
Add-ons can be used together with Instant 27001 for Confluence or Microsoft 365 (ISOPlanner). Instructions for installation and implementation are provided.
Pricing
€ 1 495
All prices are excluding applicable taxes and subscription fees for Confluence, Microsoft 365 or ISOPlanner.