ISO 27701 and GDPR Compliance: What You Need to Know

Can ISO 27701 guarantee GDPR compliance?  ISO 27701 can well position any organisation for future GDPR compliance.  While one is a management system and the other is a technically a legal framework, ISO 27701 helps to create a path on your journey to GDPR. Continue reading “ISO 27701 and GDPR Compliance: What You Need to Know”

Privacy Shield and the GDPR: Inadequate Protection for Cross-border Data Transfers

On July 16, 2020, the Court of Justice of the European Union (CJEU) issued a landmark judgement that Privacy Shield is “invalid” because it does not provide “adequate protection” under Article 45 of the General Data Protection Regulation (GDPR) for transfers of personal data of individuals located in the European Union to the United States. Continue reading “Privacy Shield and the GDPR: Inadequate Protection for Cross-border Data Transfers”

Featured CLIMBER:
Arti Lalwani

Employees at A-LIGN take many different paths throughout their journey – that’s why we sat down with Arti Lalwani, ISO Practice Lead at A-LIGN, to talk about her journey in security and compliance, the path from Senior Consultant to Practice Lead and why diversity and inclusion matter to her. Continue reading “Featured CLIMBER:
Arti Lalwani”

ISO 27701: ISO Meets the GDPR

What is ISO 27701?

The ISO/IEC 27701:2019 standard was published on August 6, 2019, and provides the requirements and guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) as an extension of ISO/IEC 27001:2013 and ISO/IEC 27002:2013. This extension replaces the development standard ISO 27552.

Continue reading “ISO 27701: ISO Meets the GDPR”