BS 10012 Personal Information Management

What is BS 10012?

Any organisation that processes personal information should ensure that it protects the privacy of the people it affects. BS 10012 provides a framework for maintaining and improving compliance with data protection requirements and good practice.  The standard was revised in 2017 in recognition of the publication of the European Union General Data Protection Regulation (GDPR), and is designed to provide best practice.  It covers topics such as privacy impact assessment, risk assessments, data retention and disposal, privacy by design and employee awareness training;  helping you to put policies and procedures in place to effectively manage the personal information of individuals.

Benefits to your company include:

  • Easily integrated with other management system such as ISO 9001 or ISO 27001
  • Alignment with the requirements of GDPR
  • Identifies risks to personal information and put controls in place to manage and reduce them
  • Demonstrate compliance with data protection legislation
  • Protect your organisations reputation and avoid negative publicity
  • Protect your organisation against civil and criminal liability

If you would like more information, we have a webinar available HERE.

Another option to support compliance is to implement the new data privacy standard ISO/IEC 27701:2019 Security techniques. This is for those organisations that are already certified to ISO 27001 as iso/iec 27701: 2019 is an Extension of iso 27001.

The standard helps with:

  • Supporting GDPR compliance
  • Securing personal data
  • How to manage data breaches
  • Provides a framework for a Privacy Information Management System
  • Provides requirements for privacy information controllers and processors

To discuss the implementation of Iso 27701 and for a no-obligation quote contact us.

Get Supported >

Want more info on BS 10012 Personal Information Management?