Connect with us

Hi, what are you looking for?

Information Privacy

ISO/IEC TS 27560

ISO/IEC TS 27560 — Privacy technologies — Consent record information structure [Draft]

Introduction

For recording PII Principals’ (data subjects’) consent to data processing, this standard specifies an open, extensible, and interoperable information structure.

The scope of the standard

As part of the standard, the standard will include guidelines for using consent receipts and consent records associated with a PII Principal’s data processing consent to help support:
– Providing the PII Principal with a record of the consent;
– Exchanging consent information between various information systems; and
– Maintenance of the recorded consent throughout its lifecycle.

In the standard, neither receipts nor records will be exchanged, nor will the exact structure of such exchanges be specified.

The content

To be determined.

Status

2020 marked the beginning of the project. A first draft of the proposal is due soon.

Commentary

To be determined.

You May Also Like

Information Security

ISO 27001 Clause 6.1.3 Information security risk treatment Required activity The organization defines and applies a risk treatment process for information security. Guidelines for...

Compliance

ISO/IEC 27034:2011+ – Information technology – Security techniques – Application security (all published except part 4) Introduction Business and IT managers, developers and auditors,...

Compliance

5. 1 Management direction for information security ISO 27001 Annex : A.5 Information Security Policies – Its objective is to provide management guidance and...

Cyber Security

ISO/IEC 27551 — Information security, cybersecurity and privacy protection — Requirements for attribute-based unlinkable entity authentication [Draft] Introduction Attribute-Based Unlinkable Entity Authentication permits formal...