System certification: necessary qualification for enterprises
The management system is developed from the concept of quality management and inherits the essence of quality management.
System certification
- Intellectual property management system
- Energy management system
- Information security management system
- Occupational health and safety management system
- Supply chain security management system
- Food safety management system
- Environmental management system
- Information technology service management system
- Social responsibility management system
- Medical device quality management system
- Quality management system
- HACCP management system
- Business continuity management system
- HSE management system
- Road vehicle network security management system
- Compliance management system
- Anti-bribery management system
- Asset management system
- Enterprise integrity management system
- Privacy information management system
- Cloud service information security management system
- Personal identifiable information protection management system in public cloud
- Personally identifiable information protection management system
Personally identifiable information protection management system
ISO/IEC 29151 is a joint publication by the International Organization for Standardization and the International Electrotechnical Commission on controls and guidance for the processing of Personally Identifiable Information (PII) to meet the requirements identified by risk assessments and privacy impact assessments related to the protection of PII. It focuses on privacy technology, covers 26 control domains and 181 control measures, standardizes the relevant behaviors of data operations in various aspects of personal information collection, storage, processing, use and disclosure, and provides guidance for enterprises to ensure personal privacy security and control compliance risks. It is applicable to any organization that has a need for privacy protection and provides a broad guide to the protection of personally identifiable information.
ISO/IEC 29151 is based on ISO/IEC 27002 Information Technology - Security Technology - Information Security Control Practice Rules and ISO related security standard specifications, providing a set of guidance for information security and PII protection control. It also guides organizations to select controls that match the specific treatment of PII based on the results of risk analysis to develop comprehensive and consistent control systems that reduce the risk of privacy breaches and reduce breaches.