Guest
Question about PII data
What about PII Data? It´s necessary to get a Policy or just to make a refence to the laws
Assign topic to the user
Expert
Rhand Leal
Apr 15, 2020
Even if you have Personally Identifiable Information (PII) in your ISMS scope, ISO 27001 does not require a specific policy for PII to be developed, but you have to verify if any of the laws you identify as legal requirements for your ISMS because of PII requires such a policy. In case any of them requires a policy for PII, you will have to develop one.
Comment as guest or Sign in
Apr 15, 2020
Apr 15, 2020
Apr 15, 2020