The international standard ISO 27701 describes the general requirements for a data protection management system. It can support users in successfully implementing a wide variety of national data protection laws. In our free White Paper, we provide advicee for practical implementation.

Read in our White Paper ...

  • Requirements for a data protection management system
  • Selected components
  • Data privacy risk management
  • Introduction of a data protection management system

Management Summary

International standard ISO 27701 describes a data protection management system (DSMS) based on an information security management system (ISMS) in accordance with ISO 27001. This special form of DSMS is known as a personal information management system (PIMS). Anyone who has developed and implemented a PIMS in accordance with ISO 27701 – in other words, anyone who systematically protects and manages personal data – will fi nd it easy to ensure and prove compliance with legal data protection requirements. Properly applied, the standard can prevent many mistakes in the implementation and operation of a PIMS. This White Paper describes the basics.

auditor-datenschutz-dqs-stephan rehfeld


Stephan Rehfeld

Managing director of scope & focus Service-Gesellschaft mbH. External data protection officer and long-time data protection auditor of DQS. Full voting member of the "Identity Management and Data Protection Technologies" working group of DIN e.V., deputy head of their GDD Erfa-Kreis Hannover.

How to get to the White Paper

First you need to register. Please use the form on this page.
After registration, you will receive an email from us asking you to confirm your email address. Please note: We cannot send you the White Paper without confirmation.
After confirming your email address, we will send you the White Paper.