Leverage planning templates to assist with PIMS decision-making, generate audit reports, and organize your PIMS documentation, all in one centralized platform.
Deploy a templated, fully customizable questionnaire to assist in conducting internal or external audits to evaluate the effectiveness of the PIMS, and to track corrective action plans in alignment with ISO 27701.
Leverage awareness training content created by privacy professionals to train, test, and record employee attestation to acceptable use policies and employee responsibility documents.
Gain insight into which personal data is being collected, used, stored, and transferred with data mapping automation. You can also generate visualizations and data flow diagrams as tools for easier analysis and executive communication.
Identify the risks to individuals from the processing of their personal information and craft and track risk treatment plans. You can also enable self-service reporting of security incidents or weaknesses and analyze overall risk with connections to your underlying inventories of data, processing activities, assets and vendors.
Privacy in practice for data mapping: With PA Consulting and Syngenta
ISO 27701 covers many aspects of data privacy. We address some frequently asked questions below to support your compliance and trust transformation journey.
ISO 27701 is a privacy standard published by the International Organization for Standardization (ISO). It extends older standards like the ISO 27001 to include privacy controls that safeguard personal identifiable information (PII). It provides guidance to organizations in building and maintaining a privacy information management system (PIMS) that supports compliance with privacy regulations such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
It should be noted that ISO 27701 is not a privacy law. Instead, it serves as a guide for companies in meeting many different privacy regulations across the world.
It applies to any data controllers and data processors who are engaged with the collection and processing of personal data.
Organizations must develop a privacy information management system (PIMS), a privacy framework that safeguards users’ data privacy throughout its lifecycle. It should include internal and external auditing, risk assessment, data subjects and rights management, an effective vendor inventory, employee privacy training, incident response, and an information security management system (ISMS) that provides robust data security. The standard also offers accreditation so you can demonstrate your commitment to privacy management.
Our Privacy and Data Governance Cloud streamlines PIMS development by being a centralized source for your privacy program. Our software provides you with pre-built planning templates, customizable internal and external auditing, employee privacy training and webinars, vendor and supply chain inventory, PIMS documentation management, and more.
Ready to get started?
Request a free demo today to see how OneTrust can guide your trust transformation journey.
Our privacy center makes it easy to see how
we collect and use your information.
When we collect your personal information, we always inform you of your rights and make it easy for you to exercise them. Where possible, we also let you manage your preferences about how much information you choose to share with us, or our partners.