ISO 27701 PIMS Lead Implementer

It is tough to manage personal data in compliance with the evolving regulatory landscape, but it cannot be disregarded. In this day and age, when businesses and personal data are increasingly globalised, regulations exist all over the world to safeguard these rights, and an organisation should be able to show evidence of how it handles the processing of personal data by adopting suitable privacy measures.

The international standard for privacy and information management is ISO/IEC 27701. It is a supplement to ISO/IEC 27001 and ISO/IEC 27002 (Information Security Management). PIMS ISO 27001 also follows suit. 

If ISO-27001 is the standard to use while putting in place an information security management system. ISO-27701 aspires to be the standard for building a PIMS (Privacy Information Management System). This is what an ISO 27701 certification aims to validate. 

ISO/IEC 27701:2019 outlines the standard and provides suggestions for building a Personal Information Management System (PIMS) within the context of your organisation, as an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management. Thus, this ISO 27701 Certification holds value and one can understand why the PIMS Certification services have seen a manifold growth in demand. 

By completing our four-day training, you will understand how to apply the principles of ISO/IEC 27701:2019 and analyse the effectiveness of your organization’s PIMS controls. It will assist you in understanding how ISO/IEC 27701 implementation provides the foundation for an effective PIMS and provides recommendations for Personally Identifiable Information (PII) controllers and/or processors processing PII.

There are multiple benefits of ISO 27701 Certification for your organization:

• Assisting with compliance with privacy rules such as the European Union’s General Data Protection Regulation (EU GDPR) and local privacy laws and regulations such as India’s Personal Data Protection Act (PDPA).
• Giving stakeholders and customers confidence that you are adhering to the highest standards in handling PII privacy threats.
• Clearing roles and responsibilities – for PII controllers and PII processors who are accountable and responsible for PII processing.
• Reducing the risks of significant process disruptions and financial damages associated with a breach.

By taking this course, you will learn how to implement the principles of ISO/IEC 27701: 2019 and assess the effectiveness of PIMS controls and PIMS Privacy in your organisation. It will help you understand how ISO/IEC 27701 application forms the cornerstone of an effective PIMS (Privacy Information Management System) and gives guidelines for controllers and/or processors of personally identifiable information (PII) who process the PII.

This ISO 27701 Certification will certify you as an ISO 27701 Lead Implementer, and also validate the efficacy of your organizations PIMS (Privacy Information Management System). Thus, despite the PIMS Certification cost, the PIMS Certification services have seen a rise in demand.

Duration of course

• 4 days of virtual live training.

Requirements

• MS Office Suite, Stable Internet Connection

Reasons why you should get certified

• Managers and consultants involved in privacy and data management
• Expert advisors seeking to master the implementation of a Privacy Information Management System
• Individuals responsible and accountable for Personally Identifiable Information (PII) within organizations
• Individuals responsible for maintaining conformance with data privacy regimes requirements
• PIMS team members
• Legal / Compliance Officers

Learning Objective

• Understand the content of ISO/IEC 27701, both requirements and guidance and how it will improve your processing of PII
• Determine the effectiveness of an organization’s PIMS
• Understand how the standard maps to the privacy framework and principles in other ISO/IEC standards (e.g. 29100, 27018 and 29151) and the EU General Data Protection Regulation (GDPR)
• Implementation issues in PIMS

Learning Outcomes

• Master the concepts, approaches, methods and techniques used for the implementation and effective management of a PIMS.
• Learn about the correlation between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks.
• Understand the operation of a PIMS based on ISO/IEC 27701 and its principal processes.
• Generalities and comparison between GDPR, CCPA, PDPB, UAE’s Data Protection law and Kenya’s DPA .
• Learn how to interpret the requirements of ISO/IEC 27701 in the specific context of an organization.
• Develop the expertise to support an organization in effectively planning, implementing, managing, monitoring and maintaining a PIMS.

Certification

• There is an exam at the end of the ISO 27701-PIMS Lead Implementer training. You will be awarded the ISO 27701-PIMS Lead Implementer certification after clearing the certification exam at the end of the training. The exam can be scheduled at your convenience.Passing Criteria: 50% of the total marks You can have a total of 2 attempts to clear the exam

Introduction to ISO/IEC 27701 and initiation of a PIMS

• Privacy Information Management System (PIMS).
• Standards and regulatory frameworks
• Fundamental concepts and principles of information security and privacy.
• Initiation of the PIMS implementation.
• Analysis of the ISMS scope and Statement of Applicability.
• PIMS scope.
• Management approval.
• Privacy policy and Privacy Risk Assessment.

Planning the implementation of a PIMS

• Privacy impact assessment.
• PIMS Statement of Applicability.
• Documentation Management.
• Selection of controls

Implementing a PIMS

• Implementation of controls.
• Implementation of controls specific for PII controllers.

4. PIMS monitoring, continual improvement and preparation for the certification audit

• Awareness, training, and communication.
• Monitoring, measurement, analysis, evaluation, and management review.
• Internal audit.
• Treatment of nonconformities.
• Continual improvement.
• Preparing for the certification audit
• Certification process.
• Doubt Session

 Examination

Delivery Format

• Lecture style
• Teacher led classroom training
• Discussions with consultants
• Roleplay / Presentations

Trainers & Consultants

Renowned Industry experts providing best hands-on training

Cancellation Policy

• Request for withdrawal or postponement must be made in writing to Tsaaro Academy.
• Refunds arising from course withdrawal/deferment will be subjected to the following terms:
• More than 2 weeks before course commencement: Full refund.
• Less than 2 weeks before course commencement: 50% refund.
• On or after course commencement: No refund.

Confirmation & Reservation

When registration is confirmed, participants will receive our email confirmation along with information about the course programme. If no seats are available for the applied date, you will be notified immediately and given an alternative date.

Tsaaro Academy reserves the right to change the course schedules, programmes and content without prior notice. We also reserve the right to cancel courses due to unforeseen circumstances.

Certificate of Proficiency

Tsaaro Academy is a unique privacy certification training platform as we strive to provide operational leadership, best practices, training, and support for data privacy.

PECB is a certification body that provides education and certification under ISO 17024 for individuals in various disciplines. PECB provides learners with valuable education, evaluation, and certification against rigorous internationally recognized standards.