ISO 27701 - Privacy AVG

General Data Protection Regulation

In today's digital world, privacy management is a crucial concern for organisations of all sizes and in all sectors. Therefore, the ISO 27701 standard is an important addition to the existing ISO 27001 standards, which focus on information security. The ISO 27701 standard emphasises the protection of personal data and provides organisations with a comprehensive framework to implement a Privacy Information Management System (PIMS).

By following the guidelines and best practices of ISO 27701, organisations can implement effective privacy controls and processes to protect the personal data of their customers and stakeholders and meet the requirements of the AVG. This includes minimising personal data, managing consent and dealing with data subject requests. With a PIMS based on ISO 27701, organisations can also demonstrate their compliance with the AVG and thus gain the trust of customers and stakeholders.

Thus, ISO 27701 certification not only provides organisations with a way to comply with AVG requirements, but can also provide benefits for business operations and reputation. The certification indicates that the organisation is serious about privacy management and this sends a positive message to customers and stakeholders. By obtaining ISO 27701 certification, organisations can show that they are aware of the risks of processing personal data and that they are taking effective measures to mitigate these risks.

However, to obtain ISO 27701 certification, organisations must undergo a comprehensive audit by an independent certifying body. This includes a thorough assessment of the organisation's privacy management system, including the implementation of required controls and processes, and the effectiveness of the system. While this can be challenging, achieving ISO 27701 certification can help organisations stand out as trustworthy and responsible organisations that take the privacy of their customers and stakeholders seriously.

Want to know more about the ISMS Management System?

Click here for more information!

We are happy to get in touch.

Mail to: or fill in the contact form.

IRM360's CyberManager management system is described as a fully self-contained and quickly implemented management system that is fully aligned with the ISMS process described in ISO27001. 

The P/ISMS CyberManager management system contains all the necessary for demonstrable assurance and continuous improvement with the PDCA.

Operational in a secure redundant and certified environment and delivered with reports aligned to certification audits.

Also, the CyberManager includes audit management for certifications, including planning and improvement actions.

With integrated E-learning for risk awareness


Simplify privacy and information security and increase your cyber resilience

CyberManager is suitable for all common standards, certification schemes and assessment guidelines

Want to know more?