we are primarely interested in GDPR implementation and compliance. But there isn't any practice in our country and overall knowledge and "data security culture" is pretty low, so I asked myself: Is there some ISO certificate that can help? I see such certificate as just one step more towards full GDPR compliance... We've undertaken some actions in the past to implement ISO 9001:2008 certificate, and our company clearly benefited from it. I haven' had much time to fully study ISO 27001 certificate so I don't know the details but again, we are interested in full GDPR compliance and tht's our final goal. I don't know if ISO 27001 can help achieve that goal - maybe you can give me the enswer.
Answer: ISO 27001 is a standard which focus on protection of information, and EU GDPR is a regulation defining requirements for protection of privacy, so ISO 27001 can be used as basis to achieve compliance with ca 50% of EU GDPR.