Accreditation for ISO/IEC 27701 Privacy Information Management Systems

ISO/IEC 27701 specifies requirements and provides guidance for establishing, implementing, maintaining, and continually improving a privacy information management system (PIMS) in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of the organization.

ISO/IEC 27701 is a subordinate standard in ANAB's fee schedule.

Please refer to the information about the accreditation process at How to Become an ANAB-Accredited Certification Body.

You can view the ISO/IEC 27701 application in .pdf format to understand specific requirements but the application process must be completed online via ANAB's EQM database; first-time EQM users must register to create an account.


Accreditation Requirements for Management Systems CBs

ANAB Accreditation Rule 49

Available from ANSI:

ISO/IEC 27701:2019, Security techniques – Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management – Requirements and guidelines

ISO/IEC 27001:2013, Information technology - Security techniques - Information security management systems - Requirements

List of ANAB Accredited CBs

For more information, contact