The International Organization for Standardization (ISO) is an independent, non-governmental international organization with a membership of 163 national standards bodies.
ISO/IEC 27701 is a global privacy standard that focuses on the collection and processing of personally identifiable information (PII). This standard was developed to help organizations comply with international privacy frameworks and laws, and focuses on three main factors :
- Extends the requirements of ISO/IEC 27001 and ISO/IEC 27002 to include data privacy;
- Provides a framework for implementing, maintaining, and continuously improving a Privacy Information Management System (PIMS);
- Includes requirements and guidance for organizations acting as PII controllers and PII processors.
Google Cloud Platform has received an accredited ISO/IEC 27701 certification as a PII processor after undergoing an audit by an independent third party.