BS 10012 Personal Information Management

What is BS 10012?

Any organisation that processes personal information should ensure that it protects the privacy of the people it affects.

BS 10012 provides a framework for maintaining and improving compliance with data protection requirements and good practice.  The standard was revised in 2017 in recognition of the publication of the European Union General Data Protection Regulation (GDPR), and is designed to provide best practice.  It covers topics such as privacy impact assessment, risk assessments, data retention and disposal, privacy by design and employee awareness training;  helping you to put policies and procedures in place to effectively manage the personal information of individuals.

Benefits to your company include:

  • Easily integrated with other management system such as ISO 9001 or ISO 27001
  • Alignment with the requirements of GDPR
  • Identifies risks to personal information and put controls in place to manage and reduce them
  • Demonstrate compliance with data protection legislation
  • Protect your organisations reputation and avoid negative publicity
  • Protect your organisation against civil and criminal liability
Get Certified >