ISO/IEC 27018:2019 is an information security code of practice for cloud service providers who process personally identifiable information for their customers. The standard is an extension to ISO/IEC 27001 and ISO/IEC 27002, and it details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.

What is ISO/IEC 27018:2019 - CoP for Protection of Personally Identifiable Information (PII) in Public Clouds acting as PII Processors? 

image background

Talk to our experts

soc-logo_certification-rvb_hex_blanc

SCS Contact

Main contact

Main contact

certints@singnet.com.sg

ISO/IEC 27018 is complementary to ISO/IEC 27017 Security Control for Cloud Services, ISO/IEC 27701 Privacy Information Management and ISO/IEC 27001 Information Security Management System. As an extension to ISO/IEC 27001, ISO/IEC 27018 provides guidance on 16 controls of ISO/IEC 27002 as well as 25 new privacy and security controls: 

  • Cooperation with PII controllers, 

  • Maintenance of PII principals’ rights,  

  • compliance with fundamental privacy requirements, 

  • Principles of transparency and accountability. 

Benefits of ISO/IEC 27018:2019 - CoP for Protection of Personally Identifiable Information (PII) in Public Clouds acting as PII Processors? 

  1. Increased customer confidence,  

  2. Enhance organization’s reputation in global marketplace, 

  3. Reduces risks of data breaches in the cloud.

image background

Our Expertise

Why get certified with SOCOTEC Certification Singapore?

iso-iec-27018-protection-personally-identifiable-information-public-clouds

SOCOTEC Certification Singapore has conducted audits since 1994 for various information security and information technology related schemes and our audit team are qualified with in-depth knowledge of the industry and the technological advancement as well as Singapore’s move to becoming a Smart Nation. Therefore, certification with us will not only enhance your branding, but also provide value-add to your organization in complying with regulatory requirements. 

SOCOTEC Certification Singapore has conducted audits since 1994 for various information security and information technology related schemes and our audit team are qualified with in-depth knowledge of the industry and the technological advancement as well as Singapore’s move to becoming a Smart Nation. Therefore, certification with us will not only enhance your branding, but also provide value-add to your organization in complying with regulatory requirements. 

Key steps to certification

certification-process

Would you like to know more about our Certification offers?

image background

Talk to our experts

soc-logo_certification-rvb_hex_blanc

SCS Contact

Main contact

Main contact

certints@singnet.com.sg