ISO 27701 Assessment
Ensure your privacy program meets requirements set by ISO 27701.
ISO 27701 specifies the requirements of a privacy information management system. It’s an extension of the standard ISO 27001, and offers a set of privacy-specific requirements, objectives and controls. Companies that leverage ISO 27001 can use ISO 27701 to extend security efforts to include privacy management activities such as processing of personal data or personally identifiable information. This can help to demonstrate compliance with data protection laws such as the GDPR.
TrustArc ISO 27701 Assessment
TrustArc consultants assess your privacy program against the ISO 27701 framework, and provide a prioritized, step-by-step implementation plan for efficiently managing information security systems.
The deep expertise of our privacy consulting team is augmented by the TrustArc Platform — powerful technology that ensures the assessment is comprehensive, complete and accurate.
3-Step ISO 27701 Compliance Review Methodology
Our proven three-step methodology is a fast and effective way to assess your current ISO 27701 privacy position, develop a roadmap to get to where you want to be and create an audit record of your efforts.
Phase One
Assess Compliance
Assess compliance across all business units. Deliverables include a summary of gaps and remediation recommendations.
Phase Two
Develop Plan
Develop a prioritized action plan with specific remediation recommendations, schedule, and budget / resource estimates.
Phase Three
Build Consensus Implement Programs
Custom review with key stakeholders to build awareness, and gain agreement on your action plan. Topics include gap & risk analysis, industry benchmarking, and resource plans.