Fragomen awarded ISO 27701 Certification for Privacy Management Program

Fragomen awarded ISO 27701 Certification for Privacy Management Program

Fragomen has been awarded ISO/IEC 27701:2019 Certification. In order to meet the standard of this certification, an organization’s policies, processes and procedures related to the handling of personally identifiable information (PII) within the organization must meet strict standards.

Certification in accordance with ISO 27701 standards requires organizations to create documentary evidence of policies, processes and controls associated with the security and processing of PII. The meeting of required standards can be used to facilitate agreements with business partners and to clarify an organization’s compliance, data processing and privacy posture with other stakeholders.

The International Organization for Standardization (ISO)’s privacy extension to the existing ISO/IEC 27001 certification provides a mechanism for an organization to demonstrate compliance with global privacy regulations, including GDPR. Although the GDPR does not yet have an accredited certification method, ISO 27701 is the closest thing to formal GDPR accreditation/certification to date.

This new standard builds on the already well-known security compliance foundation of ISO 27001, providing a comprehensive set of controls for both information security and protection of personal information.