ISO 27018 for cloud service providers

What is ISO/IEC 27018? The ISO/IEC 27000 family of standards includes the security standard ISO/IEC 27018. The industry promoted the first international standard regarding privacy in cloud computing services. It was developed in 2014 as an addition to ISO/IEC 27001, the original global standard for cloud privacy practices. It aids cloud service providers who handle…

What exactly is the ISO 29100 Privacy Framework?

ISO/IEC 29100 establishes a high-level framework for safeguarding Personally Identifiable Information (PII) in Information and Communication Technology systems (ICT). This privacy framework provided by ISO/IEC 29100 applies not only to organizations, but also to individuals who use ICT and require privacy controls in order to process PII. ISO/IEC 29100:2011 establishes a privacy framework that: ISO/IEC…

Why every firm should update to ISO 27001

Advanced, a supplier for the NHS, was attacked on August 4, 2022. NHS 111 and urgent treatment centres went offline, creating severe inconvenience. This attack showed what can happen without typical controls. ISO 27001 protects organisations. ISO 27001 is an international standard for ISMS (Information Security Management System). First published in 2005, it helps firms…