ISO 27701 Compliance

The OneTrust ISO 27701 Privacy Information Management System (PIMS) Planning template assists with decision-making according to clause 5 of the ISO 27701 standard. Evaluate your organization and its context, understand the needs and expectations of interested parties, determine the scope of the PIMS, identify leadership roles and responsibilities, and more.

Leverage awareness training content created by privacy professionals to train, test, and record employee attestation to acceptable use policies and employee responsibility documents.

With OneTrust, you can create and maintain inventories of your organization’s assets and vendors, the risks associated with each, and their owners within the organization. With Data Mapping Automation, collect information about the purpose, type and process by which personal data is being collected, used, stored, and transferred, as well as generate visualizations and data flow diagrams as tools for easier analysis and executive communication.

Use OneTrust third-party risk management software to automate the vendor engagement lifecycle, from onboarding to offboarding, to help obtain and maintain ISO 27701 certification.

OneTrust provides a standardized way for privacy programs to receive requests and manage them in a centralized system. Additionally, to tailor a branded web form – linked from your company’s privacy policy web page – as well as the ability to receive notification of a submitted request, validate the identity, and automatically file an extension if a deadline is approaching.