ISO 27701 Lead Implementer

Duration of course

• 4 days of Virtual Training
• 9:30 AM- 05:30 PM IST on two consecutive weekends.

Who should attend?

• Managers and consultants involved in privacy and data management
• Expert advisors seeking to master the implementation of a Privacy Information Management System
• Individuals responsible and accountable for Personally Identifiable Information (PII) within organizations
• Individuals responsible for maintaining conformance with data privacy regimes requirements
• PIMS team member

Learning Objective

• Master the concepts, approaches, methods and techniques used for the implementation and effective management of a PIMS.
• Learn about the correlation between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks.
• Understand the operation of a PIMS based on ISO/IEC 27701 and its principal processes.
• Learn how to interpret the requirements of ISO/IEC 27701 in the specific context of an organization.
• Develop the expertise to support an organization in effectively planning, implementing, managing, monitoring and maintaining a PIMS

Learning Outcomes

• Interpret key requirements and guidance of ISO 27701 from both a PII controller and processor implementation perspective
• Understand the fundamental principles and rights of data subjects as per EU GDPR
• Recognize a typical framework for extending your ISO 27701 ISMS to include specific requirements and guidance for protecting personally identifiable information (PII) and implementing a PIMS
• Identify the benefits to your organization of implementing an ISO 27701 PIMS.
• Implement the essential requirements and guidance of ISO 27701
• Conduct a gap analysis of your organization’s current compliance with the requirements of ISO 27701
• Conduct audits in all aspects of PIMS processes
• Maintain and improve the current level of implementation of the PIMS, in line with the principles of EU GDPR.

1. Introduction to ISO/IEC 27701 and initiation of a PIMS

• Training course objectives and structure
• Standards and regulatory frameworks
• Privacy Information Management System (PIMS)
• Fundamental concepts and principles of information security and privacy
• Initiation of the PIMS implementation
• Analysis of the ISMS scope and Statement of Applicability
• PIMS scope Management approval
• Privacy policy
• Privacy risk assessment

2. Planning the implementation of a PIMS

• Privacy impact assessment
• PIMS Statement of Applicability
• Documentation management
• Selection of controls
• Implementation of controls

3. Implementing a PIMS

• Implementation of controls
• Implementation of controls specific for PII controllers
• Implementation of controls specific for PII processors

4. PIMS monitoring, continual improvement and preparation for the certification audit

• Awareness, training, and communication
• Monitoring, measurement, analysis, evaluation, and management review
• Internal audit
• Treatment of nonconformities
• Continual improvement
• Preparing for the certification audit
• Certification process and closing of the training course.

Delivery Format

• Lecture style
• Teacher led classroom training
• Discussions with consultants
• Roleplay / Presentations

Trainers & Consultants

The course will be conducted or facilitated by trainers and consultants who are certified trainers by the Professional Evaluation and Certification Board (PECB). The PECB educates, evaluates, and provides certification against rigorous internationally recognized standards organizations and professionals. Our trainers offer their expertise in multiple fields, including but not limited to Information Security, IT, Business Continuity, GDPR, Risk & Management, etc.

More Information

• Certification fees are included in the exam price.
• Training materials and practical examples will be distributed.
• A participation certificate of 31 CPD (Continuing Professional Development) credits will be issued.
• In case of exam failure, you can retake the exam within 12 months for free.

Certification Exam:

The “PECB Certified ISO/IEC 27701 Lead Implementer” exam meets all the requirements of the PECB Examination and Certification Program (ECP). The exam covers the following competency domains:

• Domain 1 Fundamental principles and concepts of a Privacy Information Management System (PIMS)
• Domain 2 Privacy Information Management System controls and best practices
• Domain 3 Planning a PIMS implementation based on ISO/IEC 27701
• Domain 4 Implementing a PIMS based on ISO/IEC 27701
• Domain 5 Performance evaluation, monitoring and measurement of an ISMS based on ISO/IEC 27001
• Domain 6 Continuous improvement of a PIMS based on ISO/IEC 27701
• Domain 7 Preparing for a PIMS certification audit

Cancellation Policy

Request for withdrawal or postponement must be made in writing to Tsaaro Academy. Refunds arising from course withdrawal/deferment will be subjected to the following terms:

• More than 2 weeks before course commencement: Full refund.
• Less than 2 weeks before course commencement: 50% refund.
• On or after course commencement: No refund.

Confirmation & Reservation

Request for withdrawal or postponement must be made in writing to Tsaaro Academy. Refunds arising from course withdrawal/deferment will be subjected to the following terms: More than 2 weeks before course commencement: Full refund.
Less than 2 weeks before course commencement: 50% refund.
On or after course commencement: No refund.

Certificate of Proficiency

Tsaaro Academy is a unique privacy certification training platform as we strive to provide operational leadership, best practices, training, and support for data privacy.

PECB is a certification body that provides education and certification under ISO 17024 for individuals in various disciplines. PECB provides learners with valuable education, evaluation, and certification against rigorous internationally recognized standards.