Difference between revisions of "ISO"

• SP: Study period
• NWIP: New Work Item Proposal
• NP: New Work Item
• WD: Working Draft
• CD: Committee Draft
• DIS: Draft International Standard
• FDIS: Final Draft International Standard
• IS: International Standard

• SP: Study period
• NWIP: New Work Item Proposal
• NP: New Work Item
• PDTR: Proposed Draft Technical Report
• TR: Technical Report

• SP: Study period
• NWIP: New Work Item Proposal
• NP: New Work Item
• PDTS: Proposed Draft Technical Specification
• Technical Specification

• April 7-15, 2014 Hong Kong
• Oct 20-24, 2014 Mexico City, Mexico

• May 4-12, 2015 Kuching, Malaysia
• Oct 26-30, 2015 Jaipur, India

• April 11-15, 2016  Tampa, USA
• Oct 23 (sunday) - 27 (thursday), 2016, Abu Dhabi, UAE

• April 18-22, 2017, Hamilton, New Zealand
• Oct 30- Nov 3, 2017,  Berlin, Germany

• April, 16-20 Wuhan, China
• Sept 30 - Oct 4 - Gjovik, Norway

• April 1-5, Tel-Aviv, Israel
• October 14-18, Paris, France
• 19 October, Paris (jointly with SC27)

• April 21-26, Virtual meeting

• Nov 1-2, 2018, London

• Feb 6-8, Berlin (adhoc group)
• May 20-23, Toronto
• 19 October, Paris (jointly with SC27)
• 21-23 October, Paris (colocated with SC27)

• 17-20 March, Virtual meeting

This Technical Report provides guidance for:

• developing privacy functional requirements as extended components based on privacy principles defined in ISO/IEC 29100 through the paradigm described in ISO/IEC 15408-2
• selecting and specifying Security Functional Requirements (SFRs) from ISO/IEC 15408-2 to protect Personally Identifiable Information (PII)
• procedure to define both privacy and security functional requirements in a coordinated manner

has been moved from TR to TS

Published in October 2018

1st WD December 2015

2nd WD June 2016

1st CD Devember 2016

2nd CD May 2017

1st DIS January 2018

FDIS August 2018

Published in November 2018

This International Standard establishes control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment.

It specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for the protection of PII which might be applicable within the context of the information security risk environment(s) of a provider of public cloud services. The standard concerns public cloud only and cloud service providers acting as PII processors.

1st published in 2014

ISO/IEC JTC 1, Information technology, Subcommittee SC 27, IT Security techniques

This technical report provides privacy engineering guidelines that are intended to help organisations integrate recent advances in privacy engineering into their engineering practices:

• it describes the relationship between privacy engineering and other engineering viewpoints (system engineering, security engineering, risk management);
• it describes privacy engineering activities in key engineering processes such as knowledge management, risk management, requirement analysis, architecture design;

The intended audience includes engineers and practitioners who are involved in the development, implementation or operation of systems that need privacy consideration, as well as managers in organisations responsible for privacy, development, product management, marketing, and operations

1st WD provided in January 2017

2nd WD provided in June 2017

1st PDTR provided in January 2018

2nd PDTR provided in June 2018

3rd PDTR provided in October 2018

Version for publication provided in April 2019

Publication in September 2019

[Antonio Kung]

• Follows ISO/IEC 15288 Systems and software engineering -- System life cycle processes
• Integrates major results from NIST 8062, CNIL PIA, ULD proposal on privacy protection goals (unlinkability, transparency, intervenabilty), LINDDUN threat analysis and mitigation taxonomy, Radboud university design strategies

This document specifies requirements and provides guidance for establishing, implementing, maintaining and continually improving a Privacy Information Management System (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of the organization.

In particular, this document specifies PIMS-related requirements and provides guidance for PII controllers and PII processors holding responsibility and accountability for PII processing.

This document is applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations, which are PII controllers and/or PII processors processing PII within an ISMS.

Excluding any of the requirements specified in clause 5 of this document is not acceptable when an organization claims conformity to this document.

1st WD provided in April 2017

2nd WD provided in June 2017

1st CD provided in April 2018

2nd CD provided in June 2018

DIS provided in March 2019

Publication in August 2019

Was initially ISO/IEC 27552. Was renamed to ISO/IEC 27701 in August 2019

Stefan Weiss

Revision : Nat Sakimura

In the Tampa meeting, a recommendation was made to go for a review (see below study period)

A number of limited modifications have been identified in the Abu Dhabi that will lead to an amendment work

The amended version will be available further to the Berlin meeting

Stefan Weiss and Dan Bogdanov,

For revision: Nat Sakimura, Shinsaku Kiyomote

This International Standard describes a privacy architecture framework that

1. describes concerns for ICT systems that process PII;
2. lists components for the implementation of such systems; and
3. provides architectural views contextualizing these components.

This International Standard is applicable to entities involved in specifying, procuring, architecting, designing, testing, maintaining, administering and operating ICT systems that process PII. It focuses primarily on ICT systems that are designed to interact with PII principals.

This Standard establishes guidelines for the conduct of privacy impact assessments that are used for the protection of personally identifiable information (PII).

It should be used by organizations that are establishing or operating programs or systems that involve the processing of PII, or that are making significant changes to existing programs or systems. This International Standard also provides guidance on privacy risk treatment options. Privacy Impact Assessments can be conducted at various stages in the life cycle of a programme or systems ranging from the prelaunch phase and decommissioning.

In particular, it will provide a framework for privacy safeguarding and specific method for privacy impact assessment.

It will be applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations and will be relevant to any staff involved in designing or implementing projects which will have an impact on privacy within an organization, including operating data processing systems and services and, where appropriate, external parties supporting such activities.

This Standard describes privacy risk assessment as introduced by ISO/IEC 29100:2011. For the basic elements of the privacy framework and the privacy principles, reference is made to ISO/IEC 29100:2011.

For principles and guidelines on risk management, reference is made to ISO 31000:2009.

This International Standard establishes commonly accepted control objectives, controls and guidelines for implementing controls, to meet the requirements identified by a risk and impact assessment related to the protection of Personally Identifiable Information (PII).

In particular, this International Standard specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for processing PII which may be applicable within the context of an organization's information security risk environment(s).

This International Standard is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, which process PII, as part of their information processing.

This International Standard provides organizations with high-level guidance about how to assess their capability to manage privacy-related processes. In particular, it:

• specifies steps in assessing processes to determine privacy capability;
• specifies a set of levels for privacy capability assessment;
• provides guidance on the key process areas against which privacy capability can be assessed;
• provides guidance for those implementing process assessment;
• provides guidance on how to integrate the privacy capability assessment into organizations operations

This International Standard defines requirements on relative anonymity with identity escrow based on the model of authentication and authorization using group signature techniques.

This document provides guidance to the use of group signatures for data minimization and user convenience.

This guideline is applicable in use cases where authentication or authorization is needed.

It allows the users to control their anonymity within a group of registered users by choosing designated escrow agents.

Published in December 2012

Under pre-review

Is the follow-up of the NIST initiative for a big data interoperability framework. Reports are available there: [1], [2], [3], [4], [5], [6], ​[7]

1st WD provided in June 2016

2nd WD provided in May 2017

3rd WD provided in November 2017

4th WD provided in April 2018

1st CD provided in November 2018

2nd CD provided in October 2019

DIS published in October 2019

WG9 is working on the following

• 20546 : big data overview and vocabulary
• 20547 : big data reference architecture
  • Part 1: Framework and application process (TR)
  • Part 2: Use cases and derived requirements (TR)
  • Part 3: Reference architecture (IS)
  • Part 4: Security and privacy fabric (IS)
  • Part 5: Standards roadmap (TR)

Part 4 is transferred to SC27 for development, with close liaison with WG 9

[Antonio Kung] The 20547 reference architecture should be instantiated into domain specific real architectures (e.g. health, transport, energy...). 20547-4 should therefore

• contain the generic elements that could be the starting point to derive a domain specific security and privacy fabric
• address the 5 Vs concern (volume, velocity, variety, veracity, value)

Further to Berlin meetin, decision to change title (term fabric is removed)

Qin QIu, Mahmoud Ghaddar

This proposal provides guidelines to analyse security and privacy risks and identifies controls that need to be implemented in IoT domotis systems

Started in Paris October 2018 with a preliminary version

Further to the Paris meeting, a 1st WD to be provided

This document provides guidelines on risks, principles and controls for security and privacy of Internet of Things (IoT).

Started in Wuhan April 2018

1st WD provided in June 2018

2nd WD provided in November 2018

3rd WD provided in June 2019

1st CD provided in December 2010

Follow up of

• SP Privacy guidelines for IoT (WG5)
• SP Security guidelines for IoT (WG4)
• SP Security and privacy guidelines for IoT (WG4 with participation of WG5)

This document defines process reference, assessment and maturity models for the domain of big data security and privacy. These models are focused on process architecture and the processes used to achieve big data security and privacy, most specifically on the maturity of those processes.

The processes include a set of indicators of process performance and process capability.The indicators are used as a basis for collecting the objective evidence that enables an assessor to assign ratings. These processes are described in different terms, such as process purpose, outcomes, activities and tasks

1st WD was provided in January 2019

Further to Tel Aviv (April 2019) a 2nd WD will be provided

Is a WG4 project

This proposal aims to analyze challenges and risks of big data security and privacy, and proposes guidelines for implmentation of big data secuirty and privacy in aspects of big data resources, and organizing, distributing, computing and destroying big data

This International Standard

• Defines a framework including terms, entity roles and interactions for attribute-based unlinkable entity authentication, and
• Specifies requirements for attribute-based unlinkable entity authentication implementations.

  This International Standard is applicable to any information system that performs attribute-based unlinkable entity authentication

1st WD provided in April 2017

2nd WD provided in Dec 2017

3rd WD provided in July 2018

4th WD provided in February 2019

1st CD provided in October 2019

Further to the Paris meeting (October 2019), 27551 will move to DIS

Dorotea Alessandra de Marco, Yan Sun, Volker Hammer

This document specifies the conceptual framework for deletion of PII. It gives guidelines for establishing organizational policies that embrace concepts presented by specifying:

• a harmonised terminology for PII deletion,
• an approach for defining deletion/de-identification rules in an efficient way,
• a description of required documentation, and
• a definition of roles, responsibilities and processes.

This document is intended to be used by organizations where PII and other personal data is being stored or processed. This document does not address:

• specific legal provision, as given by national law or specified in contracts,
• specific deletion rules for particular types of PII as are to be defined by PII controllers for processing????
• deletion mechanisms including those for cloud storage,
• security of deletion mechanisms,
• specific techniques for de-identification of data.

1st WD provided in March 2019

2nd WD provided in June 2019

Further to Paris meeting (October 2019), it will go for 1st CD. Title changed (former title: establishing a PII deletion concept in organisations)

This document presents a user-centric framework for PII handling based on privacy preferences and privacy preference administration, which

• defines the actors and roles in the PII handling,
• describes components, their relationships and procedures,
• describes role and properties of a privacy preference management within a privacy information management system, and
• provides requirements for privacy preference administration and PII handing based on privacy preference management.

Established in Gjovik (October 2018)

1st WD provided In June 2019

Further to Paris (October 2019), a second WD will be provided

The document takes into account a multiple agency as well as a citizen centric viewpoint, and provides guidance on how privacy standards can be used at a global level and at an organisational level for the benefit of citizens

 This document is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, that provides service in the smart city environments

1st WD was provided in June 2018 further the Wuhan meeting.

2nd WD was provided in October 2018 further to the Gjovik meeting.

A 1st PDTS was provided in May 2019 further to the Tel Aviv meeting.

A 2nd PDTS will be provided further to the Paris meeting (October 2019).

Follow up of SP Privacy in Smart cities

Liaison will take place with WG11 (smart cities), SC40 (IT Service Management and IT Governance), TC268/SC1/WG4 (sustainable cities and communities), EIP-SCC (European Innovation Platform - Smart Cities and Communities)

This document is a specification for the content and the structure of online privacy notices as well as the process of requesting consent to collect and process PII from a PII principal.

This document is applicable to all situations, where a PII controller or any other entity processing PII interacts with PII principals in any online context.

1st WD provided in June 2016

2nd WD provided in April 2017

3rd WD provided in June 2017

1nd CD provided in December 2017

2nd CD provided in July 2018

3rd CD provided in January 2019

DIS provided in April 2019

Further to Paris meeting (october 2019) will go for FDIS

initiated in Jaipur (Oct 2015)

Follows Study Period initiated in Kuching (May 2015) User friendly online privacy notice and consent

Project leader: Michelle Chibba

Specification of the design process to provide consumer goods and services that meet consumers’ domestic processing privacy needs as well as the personal privacy requirements of Data Protection.

In order to protect consumer privacy the functional scope includes security in order to prevent unauthorized access to data as fundamental to consumer privacy, and consumer privacy control with respect to access to a person’s data and their authorized use for specific purposes.

The process is to be based on the ISO 9001 continuous quality improvement process and ISO 10377 product safety by design guidance, as well as incorporating privacy design JTC1 security and privacy good practices, in a manner suitable for consumer goods and services

• Official start date: November 1 2018
• First meeting: November 1-2 2018, BSI London
• Adhoc meeting, February 24-24, 2019, DIN Berlin
• Second meeting : May 21-23 2018, Toronto, where 1st working draft will be discussed
• Joint JTC1/SC27/WG5 and PC317/WG1 meeting: October 19th 2019, Paris
• Third meeting: October 21-23 AFNOR Paris

Note that this an ISO standard

This standard is managed by the PC 317 technical committee that will be chaired by Jan Schallaboek

Kimberly Lucy, Markus Gierschmann, Kelvin Magtalas, Carlo Harpes

Provides guidelines for organizational privacy risk management. 

Designed to provide guidance to organizations processing personally identifiable information (PII) for integrating risks to the organization related to the processing of PII, including the privacy impact to individuals, as part of an organizational privacy risk management program.

Assists in the implementation of a risk-based privacy program which can be integrated in the overall risk management of the organization, and supports the requirement for risk management as specified in management systems (such as ISO/IEC 27701:2019).
This document is applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations, which are organizations processing PII, or developing products and services that can be used to process PII.

This document specifies requirements and provides guidance for bodies providing audit and certification of a privacy information management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, in addition to the requirements contained within ISO/IEC 27006 and ISO/IEC 27701. It is primarily intended to support the accreditation of certification bodies providing PIMS certification.

Conformance to the requirements contained in this document needs to be demonstrated in terms of competence and reliability by certification body providing PIMS certification, and the guidance contained in this document provides additional interpretation of these requirements for certification body providing PIMS certification.

NOTE This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

This document provides a framework for identifying and mitigating re-identification risks and risks associated with the lifecycle of de-identified data.

 This document is applicable to all types and sizes of organizations, including public and private companies, government entities and not-for-profit organizations implementing data de-identification processes for privacy enhancing purposes.

This document specifies an interoperable, open and extensible information structure for recording PII Principals' or data subjects' consent to data processing. This document further provides guidance on the use of consent receipts and consent records associated with a PII Principal's data processing consent to support the:

— provision of a record of the consent to the PII Principal;

— exchange of consent information between information systems; and,

— management of the lifecycle of the recorded consent.  

• Initiated in Jaipur (Oct 2015)
• Replaces SP privacy-respecting identity management scheme using attribute-based credentials (outcome of the ABC4trust FP7 project: https://abc4trust.eu,, initiated in April 2014 in Hong Kong), with an extended scope
• Completed.
• Followed by new project : ISO/IEC 27551: Requirements for attribute-based unlinkable entity authentication (see above)

Study mobile application ecosystems from a privacy viewpoint

Collect views of multiple stakeholders in the mobile applications space

Collect mobile apps privacy guidelines issued by various agencies

Collate a report on the findings

Potentially provide a new work item proposal

Initiated in Jaipur (October 2015)

Connect with multiple stakeholders in the smart city space

Refer the existing work on smart cities

Collate information, feedback, inputs from the stakeholders and draft the guidelines

Potentially provide (a) new work item proposal(s) that can translate in guidelines

Initiated in Jaipur (October 2015)

Liaison to be established with ISO/IEC JTC1/SG1 (Smart cities) 

Presentation in Tampa (April 2016) of intermediate state

• Liaison with EIP-SCC mentioned (see https://eu-smartcities.eu/content/citizen-centric-approach-data-privacy-design). 

Presentation in Abu Dhabi (October 2016) of intermediate state

• Includes contribution from pripare: https://eu-smartcities.eu/sites/all/files/PRIPARE%20recommendations%20for%20Smart%20cities.pdf

Presentation in Hamilton (April 2017) of intermediate state

• Includes contribution from pripare https://ipen.trialog.com/wiki/File:PRIPARE_contribution_to_SP_Privacy_in_Smart_Cities_2017.pdf
• Liaison to take place with ISO/IEC WG11 Smart cities in order to discuss the needs for privacy management guidelines

Proposal for new work item in Berlin (Nov 2017)