[fusion_builder_container hundred_percent=”no” hundred_percent_height=”no” hundred_percent_height_scroll=”no” hundred_percent_height_center_content=”yes” equal_height_columns=”no” menu_anchor=”” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” class=”” id=”” background_color=”” background_image=”” background_position=”center center” background_repeat=”no-repeat” fade=”no” background_parallax=”none” enable_mobile=”no” parallax_speed=”0.3″ video_mp4=”” video_webm=”” video_ogv=”” video_url=”” video_aspect_ratio=”16:9″ video_loop=”yes” video_mute=”yes” video_preview_image=”” border_size=”” border_color=”” border_style=”solid” margin_top=”” margin_bottom=”” padding_top=”” padding_right=”” padding_bottom=”” padding_left=””][fusion_builder_row][fusion_builder_column type=”1_1″ layout=”1_1″ spacing=”” center_content=”no” link=”” target=”_self” min_height=”” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” class=”” id=”” background_color=”” background_image=”” background_position=”left top” background_repeat=”no-repeat” hover_type=”none” border_size=”0″ border_color=”” border_style=”solid” border_position=”all” padding_top=”” padding_right=”” padding_bottom=”” padding_left=”” dimension_margin=”” animation_type=”” animation_direction=”left” animation_speed=”0.3″ animation_offset=”” last=”no”][fusion_text]

In the modern digital era, compromised personal information has the potential to cause unimaginable harm to the individuals. But we happily gift our personal information to anyone for some perceived benefits without understanding the consequences of its misuse. Governments, worldwide, introduced new/ modified privacy regulations to protect the interest and freedom of citizens and to establish citizen’s rights over their own information.

The organizations are required to comply with all such applicable regulations and the cost of non-compliance could be devastating – money, reputation, good-will, imprisonment etc. All organizations were charting out their own path of implementation and maintenance for want of a reliable standard framework.

ISO came up with Privacy Information Management System (PIMS) standard that provides a wonderful framework to institutionalize the privacy system and continually improve. Any regulatory & compliance requirements related to privacy can be easily mapped to this framework. PIMS is defined by ISO as –

Information security management system which addresses the protection of privacy as potentially affected by the processing of Personally Identifiable Information (PII)”

Though the definition talks about information security, existing ISMS ISO 27001 was not sufficient to handle specific Privacy aspects like individuals’ rights, handling breaches, managing privacy risks etc. ISO published its first revision of PIMS in August,2019. ISO 27701:2019 specifies requirements and provides guidance for establishing, implementing Maintaining and continually improving a Privacy Information Management System (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/ IEC 27002 for privacy management. The standard also include mapping with word’s most famous privacy regulation of European Union – General Data Protection Regulation, commonly known by its abbreviation GDPR.