iso-iec-27018-protection-personally-identifiable-information-public-clouds

ISO/IEC 27018:2019 - Protection of Personally Identifiable Information (PII)

Contact us
ISO/IEC 27018:2019 - Protection of Personally Identifiable Information (PII)

ISO/IEC 27018:2019 is an information security code of practice for cloud service providers who process personally identifiable information for their customers. The standard is an extension to ISO/IEC 27001 and ISO/IEC 27002, and it details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.

What is ISO/IEC 27018:2019 - CoP for Protection of Personally Identifiable Information (PII) in Public Clouds acting as PII Processors? 

Talk to our experts

SCS Contact

Main contact

Main contact

certints@singnet.com.sg

ISO/IEC 27018 is complementary to ISO/IEC 27017 Security Control for Cloud Services, ISO/IEC 27701 Privacy Information Management and ISO/IEC 27001 Information Security Management System. As an extension to ISO/IEC 27001, ISO/IEC 27018 provides guidance on 16 controls of ISO/IEC 27002 as well as 25 new privacy and security controls: 

  • Cooperation with PII controllers, 

  • Maintenance of PII principals’ rights,  

  • compliance with fundamental privacy requirements, 

  • Principles of transparency and accountability. 

Benefits of ISO/IEC 27018:2019 - CoP for Protection of Personally Identifiable Information (PII) in Public Clouds acting as PII Processors? 

  1. Increased customer confidence,  

  2. Enhance organization’s reputation in global marketplace, 

  3. Reduces risks of data breaches in the cloud.

iso-iec-27018-protection-personally-identifiable-information-public-clouds

Our Expertise

Why get certified with SOCOTEC Certification Singapore?

SOCOTEC Certification Singapore has conducted audits since 1994 for various information security and information technology related schemes and our audit team are qualified with in-depth knowledge of the industry and the technological advancement as well as Singapore’s move to becoming a Smart Nation. Therefore, certification with us will not only enhance your branding, but also provide value-add to your organization in complying with regulatory requirements. 

SOCOTEC Certification Singapore has conducted audits since 1994 for various information security and information technology related schemes and our audit team are qualified with in-depth knowledge of the industry and the technological advancement as well as Singapore’s move to becoming a Smart Nation. Therefore, certification with us will not only enhance your branding, but also provide value-add to your organization in complying with regulatory requirements. 

Key steps to certification

certification-process

Would you like to know more about our Certification offers? Contact us

Contact us
certints@singnet.com.sg

Talk to our experts

SCS Contact

Main contact

Main contact

certints@singnet.com.sg
iso-iec-27701-privacy-information-management

ISO/IEC 27701:2019 Privacy Information Management System

Discover the section
iso-iec-27001-information-security-cybersecurity-privacy-protection-information-security-management-system-certification

ISO/IEC 27001:2013/ 2022 Information Security, Cybersecurity and Privacy Protection

Discover the section