EN ISO/IEC 29151:2022

Information technology - Security techniques - Code of practice for personally identifiable information protection (ISO/IEC 29151:2017) EN ISO/IEC 29151:2022

General information

60.60 Standard published   Apr 6, 2022

CEN/CENELEC

CEN/CLC/JTC 13 Cybersecurity and Data Protection

European Norm

35.030   IT Security

Scope

ISO/IEC 29151:2017 establishes control objectives, controls and guidelines for implementing controls, to meet the
requirements identified by a risk and impact assessment related to the protection of personally identifiable information
(PII).
In particular, this Recommendation | International Standard specifies guidelines based on ISO/IEC 27002, taking into
consideration the requirements for processing PII that may be applicable within the context of an organization's
information security risk environment(s).
ISO/IEC 29151:2017 is applicable to all types and sizes of organizations acting as PII controllers (as defined in ISO/IEC 29100),
including public and private companies, government entities and not-for-profit organizations that process PII.

Life cycle

NOW

PUBLISHED
EN ISO/IEC 29151:2022
60.60 Standard published
Apr 6, 2022

REVISED BY

IN_DEVELOPMENT
prEN ISO/IEC 29151 rev

Relations

Adopted from ISO/IEC 29151:2017 IDENTICAL