GDPR

Mandatory cookies

Mandatory cookies enable the main website functions. Without the aforementioned cookies the website cannot function properly. These cookies can be turned off only by changing the browser settings.

Statistics cookies

Analytical cookies allow us to improve the website by collecting and providing information about its usage.

Newsletter subscription

projektai-lsd Lithuanian Standards Board
Portal for draft standards
Register

prEN ISO/IEC 27555

Information security, cybersecurity and privacy protection - Guidelines on personally identifiable information deletion (ISO/IEC DIS 27555:2026)

Draft Public enquiry
Comment end date 2026-08-04
Export comments Read draft and comment

Project stage codes

1. Prioritetinių darbo temų pažymėjimas ir ekspertų skyrimas
2. Projektas
3. Viešoji apklausa
From 2026-06-05 till 2026-08-04
4. Closure of enquiry
5. Submission to Formal Vote

Organisation

CEN Europos standartizacijos komitetas

ICS

35.030 - IT Security

Technical Committee

TK 79 IT security techniques

ForeignTC'S

CEN/CLC/JTC 13

Number of comments

0

Comment start date

2026-06-05

Scope

This document contains guidelines for developing and establishing policies and procedures for deletion of personally identifiable information (PII) in organizations by specifying: —    a harmonized terminology for PII deletion; —    an approach for defining deletion rules in an efficient way; —    a description of required documentation; —    a broad definition of roles, responsibilities and processes. This document is intended to be used by organizations where PII is stored or processed. This document does not address: —    specific legal provision, as given by national law or specified in contracts; —    specific deletion rules for particular clusters of PII that are defined by PII controllers for processing PII; —    deletion mechanisms; —    reliability, security and suitability of deletion mechanisms; —    specific techniques for de-identification of data.