Course Overview
During this training course, participants will learn to plan and carry out audits in compliance with ISO 19011, ISO/IEC 17021-1, and ISO/IEC 27706. Additionally, participants will acquire knowledge on audit techniques and become competent to manage an audit program. Most importantly, this training course provides guidance on auditing the clauses of ISO/IEC 27701:2025, as well as the privacy controls for PII controllers and PII processors. It explains how to evaluate their implementation and effectiveness, as well as how to assess the organization's ability to maintain, monitor, and continually improve its Privacy Information Management System (PIMS).
Why Choose DQS for This Training?
DQS, with its extensive experience as a leading certification body, partners with PECB to deliver this specialized PIMS audit training. The internationally recognized PECB Lead Auditor certificate proves that you have the capabilities and competencies to audit organizations based on best practices in privacy information management.
| Feature | The DQS Advantage |
| Expert-Led Instruction | Learn from DQS-accredited auditors with deep expertise in privacy information management systems. |
| Comprehensive Audit Coverage | Covers auditing of all ISO/IEC 27701:2025 clauses and Annex A privacy controls for PII controllers and processors. |
| PECB-Certified Programme | Internationally recognized certification pathway through PECB. |
| Comprehensive Materials | Participants receive more than 400 pages of comprehensive training materials. |
| Free Exam Retake | Candidates who fail the first exam attempt are eligible to retake the exam for free within a 12-month period. |
Who Should Attend?
This training course is intended for:
· Auditors seeking to perform and lead PIMS certification audits
· Managers or consultants seeking to master a PIMS audit process
· Individuals responsible for maintaining conformance with PIMS requirements
· Technical experts seeking to prepare for a PIMS audit
· Expert advisors in the protection of PII
Learning Objectives
By the end of this training course, participants will be able to:
· Explain the fundamental concepts and principles of a privacy information management system (PIMS) based on ISO/IEC 27701
· Interpret the ISO/IEC 27701 requirements for a PIMS from the perspective of an auditor
· Evaluate the PIMS conformity to ISO/IEC 27701 requirements, in accordance with the fundamental audit concepts and principles
· Plan, conduct, and close an ISO/IEC 27701 compliance audit, in accordance with ISO/IEC 17021-1 requirements, ISO 19011 guidelines, and other best practices of auditing
· Manage an ISO/IEC 27701 audit program
Course Agenda
Day 1 – Introduction to the PIMS and ISO/IEC 27701
· Training course objectives and structure
· Introduction to ISO/IEC 27701 and the PIMS
· Certification process
· Fundamental concepts and principles related to information privacy
· Overview of ISO/IEC 27701 requirements
Day 2 – Audit Principles and the Preparation for and Initiation of an Audit
· Fundamental audit concepts and principles
· The impact of trends and technology in auditing
· Evidence-based auditing
· Risk-based auditing
· Initiation of the audit process
· Stage 1 audit
Day 3 – On-Site Audit Activities
· Preparing for stage 2 audit
· Stage 2 audit
· Communication during the audit
· Information collection and analysis methods
· Creating audit test plans
· Auditing the requirements of ISO/IEC 27701 – clauses 4 to 10
Day 4 – Closing the Audit
· Auditing the requirements of ISO/IEC 27701 – Annex A controls
· Drafting audit findings and nonconformity reports
· Audit documentation and quality review
· Closing of the audit
· Evaluation of action plans by the auditor
· Beyond the initial audit
· Managing an internal audit program
Day 5 – Certification Exam
· 3-hour written examination covering all competency domains
Examination
Duration: 3 hours
The "PECB ISO/IEC 27701 Lead Auditor" exam fully meets the PECB Examination and Certification Program (ECP) requirements. It covers the following competency domains:
· Domain 1: Fundamental principles and concepts of a privacy information management system
· Domain 2: Privacy information management system requirements
· Domain 3: Fundamental audit concepts and principles
· Domain 4: Preparing an ISO/IEC 27701 audit
· Domain 5: Conducting an ISO/IEC 27701 audit
· Domain 6: Closing an ISO/IEC 27701 audit
· Domain 7: Managing an ISO/IEC 27701 audit program
Certification
After passing the exam, you can apply for one of the credentials below. You will receive a certificate once you fulfill all the requirements of the selected credential.
| Credential | Exam | Professional Experience | Project Experience | Other Requirements |
| ISO/IEC 27701 Provisional Auditor | ISO/IEC 27701 Lead Auditor Exam | None | None | Signing the PECB Code of Ethics |
| ISO/IEC 27701 Auditor | ISO/IEC 27701 Lead Auditor Exam | 2 years (1 in privacy management) | 200 hours | Signing the PECB Code of Ethics |
| ISO/IEC 27701 Lead Auditor | ISO/IEC 27701 Lead Auditor Exam | 5 years (2 in privacy management) | 300 hours | Signing the PECB Code of Ethics |
| ISO/IEC 27701 Senior Lead Auditor | ISO/IEC 27701 Lead Auditor Exam | 10 years (7 in privacy management) | 1,000 hours | Signing the PECB Code of Ethics |
General Information
· Certificate and examination fees are included in the price of the training course.
· Participants will receive more than 400 pages of comprehensive training materials, including practical examples, exercises, and quizzes.
· Participants who have attended the training course will receive an attestation of course completion worth 31 CPD (Continuing Professional Development) credits.
· Candidates who fail the first exam attempt are eligible to retake the exam for free within a 12-month period from the course completion date.
Course Approach
· You register for an account at PECB website, before or after order to DQS HK.
· Registration to DQS HK.
· Follow our instruction later for payment to DQS HK.
· You will have access to the course materials via PECB Kate app, in English unless otherwise specified, normally within a couple of working days.
· The course is designed for a 5-day duration, including an exam, to complete within 4 months.
· You can remotely access or download the training materials within PECB Kate app.
· You can complete the self-study at home at your pace.
Exam
· You can book an online exam at PECB website, for free with the exam code provided by PECB, normally within 4 months after your order to DQS HK.
· Well before the online exam, create exam profile at PECB website, download PECB Exams app and install it at your computer.
· The exam is open-book with duration for 3 hours.
· You can book an online exam retake, if required, at PECB website for free with the exam code provided by PECB, normally within 3 months after your initial exam.
Certificate and Qualification
· After receiving an email from PECB with exam passing result, you can reply by email to PECB with request for a course certificate.
· If you have the required working experience and project experience specified in course brochure, you can further apply to PECB for the associated qualification.
Above Listed Prices Include:
· Access to training materials and exercises in English by PECB during course period
· An examination by PECB normally within 4 months
· A retake by PECB, if required, normally within 3 months after initial exam
· Initial qualification registration fee by PECB, if applicable, within 3 months after passing exam