Aug 19, 2019 SOURCE: PR NewsWire

OneTrust Achieves World's First ISO 27701 Certification, the Privacy Extension to ISO 27001

ATLANTA, Aug. 19, 2019 /PRNewswire/ -- OneTrust today announced it has received the world's-first ISO 27701 certification for a Privacy Information Management System, the privacy extension of the ISO 27001 that establishes privacy controls and for the processing of personal data, and may likely become the foundation for future GDPR certifications.

OneTrust completed the certification process quickly and efficiently by using the OneTrust Privacy Management suite of technology to demonstrate internal privacy program accountability under the ISO 27701 standards. ISO 27701 is fully built-in and available out of the box in OneTrust.

Learn more in our webinar ISO 27701 New Privacy Standard: How We Got Certified & How You Can To! hosted by Andrew Clearwater, OneTrust's CPO who achieved the first ISO 27701 certification and Alex Li, Microsoft's Director of Certification Policy, who is responsible for public policy aspect of ISO 27701 standard on August 28 at 11:00 am ET

"We're incredibly proud to present OneTrust with the world's first certificate issuance for a Privacy Information Management System (PIMS) against the audit criteria within ISO/IEC 27701:2019," said David Forman, Senior Director of ISO Services, Coalfire. "OneTrust has been able to quickly establish and implement a brand-new management system within just a few days of the standard being released to the public, a testament to the OneTrust Privacy Management software system that complements the PIMS requirements and control objectives. We look forward to the continued partnership with OneTrust and further adoption of ISO 27701 as the de facto privacy standard within the market."

Built on top of ISO 27001, which more than 60,000 organizations have certified to date, the ISO 27701 is the highly anticipated standard that is expected to be the first privacy management certification to get mainstream adoption and may serve as a basis for upcoming GDPR certifications. The ISO 27701 standard recommends organizations include information security and the protection of personal data requirements into their management system activities. Specifically, ISO 27701 details the necessary provisions for establishing, implementing, maintaining, and continually improving a PIMS. ISO 27701 provides practical guidance that can be used by personal data controllers, (including joint personal data controllers) and personal data processors (including those using subcontractors) to manage their privacy program.

To become the first to achieve ISO 27701 certification, OneTrust completed a rigorous audit of its internal PIMS by Coalfire ISO, the accredited certification body extension of Coalfire. OneTrust used the OneTrust Privacy Management technology to document evidence and demonstrate compliance regarding the processing of personal information. Some of these processes documented within the OneTrust Privacy Management software included:

    --  PIMS Decision-Making
    --  Documentation
    --  Privacy Training, Testing and Attestation
    --  Internal Audits
    --  Records of Processing Activities
    --  Risk Assessment and Treatment
    --  Vendor Management
    --  Incident Response
    --  Data Subject Request Management
    --  Consent Management

"As the first to announce ISO 27701 certification, we're able to serve as a case study to ISO 27001-certified companies in how OneTrust technology can be used during an ISO 27701 audit for the documentation of evidence and demonstration of personal information processing compliance," said Andrew Clearwater, CIPP/US, OneTrust Chief Privacy Officer, who led OneTrust's ISO 27701 efforts alongside Brian Philbrook, Fellow of Information Privacy (FIP) and Privacy Counsel, OneTrust. "The ISO 27701 certification is likely to become a prerequisite for many business transactions just as ISO 27001 is viewed today. We look forward to working with companies across the globe to use OneTrust Privacy Management technology to help complete a successful ISO 27701 audit."

To learn more, register for our webinar, ISO 27701 New Privacy Standard: How We Got Certified & How You Can To! For additional information, or to request a live OneTrust Privacy Management Software demo, visit OneTrust.com or email info@onetrust.com.

About OneTrust
OneTrust is the #1 most widely used privacy, security and third-party risk technology platform trusted by more than 3,000 companies to comply with the CCPA, GDPR, ISO27001 and hundreds of the world's privacy and security laws. OneTrust's three primary offerings include OneTrust Privacy Management Software, OneTrust PreferenceChoice(TM) consent and preference management software, and OneTrust Vendorpedia(TM) third-party risk management software and vendor risk exchange. To learn more, visit OneTrust.com or connect on LinkedIn, Twitter and Facebook.

About Coalfire ISO
As the certification arm of Coalfire, Coalfire ISO provides audit and certification services to public and private sector organizations, adhering to the applicable requirements of both ISO/IEC 17021-1:2015 and ISO/IEC 27006:2015. Coalfire ISO is an accredited certification body under both the ANSI National Accreditation Board (ANAB) and the United Kingdom Accreditation Service (UKAS). CoalfireISO.com.

Media Contact:
Gabrielle Ferree
Public Relations
media@onetrust.com

View original content to download multimedia:http://www.prnewswire.com/news-releases/onetrust-achieves-worlds-first-iso-27701-certification-the-privacy-extension-to-iso-27001-300903196.html

SOURCE OneTrust

Related News

Crypto.com Becomes the First Cryptocurrency Company in the World to Achieve ISO/IEC 27701:2019 Certification

Intuiface Receives ISO 27001 Certification

BIM Track Receives ISO 27001 Cyber Security Certification

Waterfall Security Solutions Achieves ISO 27001 Certification

Plataine Achieves ISO 27001 Certification for Compliance with Information Security Management Requirements

Conga® Achieves ISO 27001 and 27701 Certifications

Medit Receives ISO/IEC 27001 Certification for Information Security Management

Certrec's Fatigue Rule Management System Now Ensures Compliance with NRC's Alternate Work Hour Controls

View all News

Related Procurements

Deadline: Dec 31, 2069

59--CIRCUIT CARD ASSEMB

Totcal cancellation no FY20 funding

Deadline: Oct 1, 2024

Microelectronics Innovation for Next-generation System Advancement and Validation (MINSAV) Advanced Research Announcement (ARA) with Calls

This is to post questions and answers and OSD Briefing from Industry Day.

Deadline: Oct 31, 2024

Air Superiority Technology Broad Agency Annoucement

This Broad Agency Announcement (BAA) is for the Air Force Research Laboratory Munitions directorate (AFRL/RW) in support of Air Superiority Technolgoy. Operations Security (OPSEC): General OPSEC procedures,...

View all Procurementsp

Agenda

June

FranceParc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024, 17 - 21 June 2024, Parc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024 There can be no sustainable world without peace and security. Founded in 1967, the exhibition...

May

Paris Marriott Rive Gauche & Conference Center

Future Artillery, 21-23 May 2024, Paris Marriott Rive Gauche & Conference Center, France

DELIVERING FIRES IN THE MULTI-DOMAIN BATTLESPACE As artillery reasserts itself as the ‘King of Battlefield’ in the wake...

May

United Arab EmiratesADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR Abu Dhabi 2024, 21-23 May 2024, ADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR ACCELERATING TRANSFORMATION IN THE NATIONAL SECURITY ECOSYSTEM ISNR Abu Dhabi is the region’s most trusted...

View All Events

Related Companies

Chilcott Inc.

Huntington Ingalls Industries, Inc.

Moog Inc.

View All Companies