Draft
International Standard
ISO/IEC DIS 29151
Information security, cybersecurity and privacy protection – Controls and guidance for personally identifiable information protection
Reference number
ISO/IEC DIS 29151
Edition 2
© ISO 2024
Draft International Standard
Under development
This Draft International Standard is in the enquiry phase with ISO members.
Will replace ISO/IEC 29151:2017

Abstract

ISO/IEC 29151:2017 establishes control objectives, controls and guidelines for implementing controls, to meet the requirements identified by a risk and impact assessment related to the protection of personally identifiable information (PII).

In particular, this Recommendation | International Standard specifies guidelines based on ISO/IEC 27002, taking into consideration the requirements for processing PII that may be applicable within the context of an organization's information security risk environment(s).

ISO/IEC 29151:2017 is applicable to all types and sizes of organizations acting as PII controllers (as defined in ISO/IEC 29100), including public and private companies, government entities and not-for-profit organizations that process PII.

General information

  • Status
     : Under development
    Stage
    : DIS registered [40.00]
  • Edition
     : 2
    Number of pages
     : 46
  • Technical Committee :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030 
  • RSS updates

Life cycle

Got a question?

Check out our Help and Support

  2. Store
  3. Standards catalogue
  4. ICS
  5. 35
  6. 35.030
  7. ISO/IEC DIS 29151