CEN ISO/IEC/TS 27006-2:2022

Requirements for bodies providing audit and certification of information security management systems - Part 2: Privacy information management systems (ISO/IEC TS 27006-2:2021) CEN ISO/IEC/TS 27006-2:2022

General information

Current stage: 60.60 Standard published Nov 9, 2022

Originator: CEN/CENELEC

Owner: CEN/CLC/JTC 13 Cybersecurity and Data Protection

Type: Technical Specification

ICS: 03.120.20 Product and company certification. Conformity assessment | 35.030 IT Security

Scope

This document specifies requirements and provides guidance for bodies providing audit and certification of a privacy information management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, in addition to the requirements contained within ISO/IEC 27006 and ISO/IEC 27701. It is primarily intended to support the accreditation of certification bodies providing PIMS certification.
The requirements contained in this document need to be demonstrated in terms of competence and reliability by anybody providing PIMS certification, and the guidance contained in this document provides additional interpretation of these requirements for any body providing PIMS certification.
NOTE This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

Life cycle

NOW

PUBLISHED
CEN ISO/IEC/TS 27006-2:2022
60.60 Standard published
Nov 9, 2022

REVISED BY

IN_DEVELOPMENT
prEN ISO/IEC 27706

CEN ISO/IEC/TS 27006-2:2022

Requirements for bodies providing audit and certification of information security management systems - Part 2: Privacy information management systems (ISO/IEC TS 27006-2:2021) CEN ISO/IEC/TS 27006-2:2022

General information

Scope

Life cycle

NOW

REVISED BY

Relations

Adopted from ISO/IEC TS 27006-2:2021 IDENTICAL