TISAX®: What is it and who needs it?
First you have to understand why TISAX® came about: Before TISAX® certification, automotive manufacturers were already asking their suppliers, partners and service providers to demonstrate that they had an adequate ISMS (Information Security Management System) in place to sufficiently protect the data delivered to them by these manufacturers. At that time, the information they received […]
ISO 27002: What are the new changes in 2022?
Last February, the new version of ISO 27002:2022 was published. ISO 27002 is a guide of the ISO 27000 family of standards, which provides best practices in information security, which now with the new update are called security controls. What are the main changes in ISO 27002? Broadly speaking: Orientation to the concepts of […]
What is ISO 27701 and to whom it applies?
ISO 27701 is an extension of ISO 27001, for privacy management. It is also known as Privacy Information Management System (PIMS). Its purpose is to provide guidance on how organizations should manage personal information, as well as to help demonstrate compliance with privacy regulations, especially the General Data Protection Regulation. Who does it apply to? […]