prEN ISO/IEC 29151
Information security, cybersecurity and privacy protection - Controls and guidance for personally identifiable information protection (ISO/IEC DIS 29151:2025)
Draft Public enquiryProject stage codes
1. Decision on WI Proposal
2. Projektas
3. Viešoji apklausa
From 2025-05-09
till 2025-06-08
4. Closure of enquiry
5. Submission to Formal Vote
Organisation
CEN Europos standartizacijos komitetasICS
35.030 - IT SecurityTechnical Committee
TK 79 IT security techniquesForeignTC'S
CEN/CLC/JTC 13Number of comments
0Comment start date
2025-05-09Scope
This Recommendation | International Standard establishes controls, purpose, and guidance for implementing controls, to meet the requirements identified by a risk and impact assessment related to the protection of personally identifiable information (PII). In particular, this Recommendation | International Standard specifies guidance based on ISO/IEC 27002, taking into consideration the controls for processing PII that may be applicable within the context of an organization's information security risk environment(s). This Recommendation | International Standard is applicable to all types and sizes of organizations acting as PII controllers (as defined in ISO/IEC 29100), including public and private companies, government entities and not-for-profit organizations that process PII, in particular, organizations that do not establish or operate a privacy information management system.Relations
Pakeis
LST EN ISO/IEC 29151:2022
Information technology - Security techniques - Code of practice for personally identifiable information protection (ISO/IEC 29151:2017)