Expert Advice Community

Home / ISO 27001 & 22301 / Practical example of ISO 27018 PII processor, principal and controller

Guest

Practical example of ISO 27018 PII processor, principal and controller

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Sep 17, 2016 Last commented:   Sep 17, 2016

Practical example of ISO 27018 PII processor, principal and controller

ISO 27001 & 22301
Is it possible to explain with an example who is PII processor, who is PII principal and who is PII controller?
0 0

Assign topic to the user

ISO 27001 FOUNDATIONS COURSE

Everything you need to know about ISO 27001.

ISO 27001 FOUNDATIONS COURSE

Everything you need to know about ISO 27001.
Expert
Rhand Leal Sep 17, 2016

Answer:

Consider the following scenario: John wants to make a bank transfer, and asks Mark, his account manager, to arrange this operation. Mark receives the bank transfer information (account number, value to be transfered and transfer date) from John and authorizes Bill, his assistant, to do the bank transfer.

- John are the PII principal. The PII required for the bank transfer, the account data, is related to him.
- Mark, the account manager, is the PII controller. He is the one, besides John, who can authorize the use of John's PII to perform the bank transfer.
- Bill, Mark's assistant, is the PII processor. It is him who uses John's PII to perform the bank transfer in accordance with Mark's instructions (value to be transfered and transfer date, sent by John).

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Sep 17, 2016

Sep 17, 2016

Suggested Topics
Ash Created:   Jan 21, 2024 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Internal Audits
Garry Created:   Dec 10, 2023 ISO 27001 & 22301
Replies: 3
0 0

Understanding the core concepts of RPO & RTO - ISO 22301