Thought Leadership Papers.

ISO 27001 and the General Data Protection Regulation (GDPR)

Published On: 1st November 2017

ISO 27001 and the General Data Protection Regulation (GDPR)ISO 27001 is a framework for information protection. ISO 27001 focuses on the people, processes and technology of an organisation and ensures that a framework is put in place to prevent breaches and ensure that a proper mechanism is created for reporting, logging incidents and maintaining an organisation’s information security environment.

According to GDPR, personal data is critical information that all organisations need to protect. ISO 27001 provides the means to ensure this protection and wider compliance with this regulation.

ISO 27001 provides a framework for information protection which is a fundamental cornerstone for achieving compliance with the GDPR helping to ensure companies can maintain customer trust and confidence in their ability to handle their personal data appropriately and securely. This paper is intended to help explain how an ISO 27001 framework may assist organisations to establish a solid foundation for GDPR compliance.

The new Regulation

The GDPR will repeal the current data protection legislation when it comes into force on 25th May 2018.This means the Data Protection Act 1998 (DPA) and the European Union legislation it is derived from – the Data Protection Directive, will no longer apply.

It introduces new regulatory requirements, giving individuals more control over the data that organisations hold about them. Working with the Regulation is a legal compliance exercise as well as a technical and security governance exercise.

To download the full paper please use the form below:
 


 
Every now and then, Gemserv would like to send you information about our products and services that are relevant to you. By submitting your details lets us know that you’re OK with this and that you also agree to our privacy policy. You can, of course, opt out of these communications at any time!

 

Article Author.

Ivana Bartoletti

Head of Privacy and Data Protection
Ivana Bartoletti is the Head of Privacy and Data Protection at Gemserv. Her years of experience in the field span... Read More From Ivana Bartoletti

Jennie Cleal

Senior Consultant - Information Security
Jennie is a focused, strategic leader with a proven ability to encourage and motivate others. She has excellent people skills... Read More From Jennie Cleal

Our Latest Insights.

Our work means different things to different clients and we wanted to share some details of the projects we have managed to give you an insight into our capabilities and the impact we have delivered as a business.

 

View All Insights

Say Hi.

Did you like what you read? Did you want to find out more about the subject? Or did you simply want to get in touch with us? Either way if you would like to get in touch with us you can do so using the form on the right.

Every now and then, Gemserv would like to send you information about our products and services that are relevant to you. By submitting your details lets us know that you’re OK with this and that you also agree to our privacy policy. You can, of course, opt out of these communications at any time!

Get In Touch

Want to find out more?

Follow the links below find out more about the services we provide, our insight into the industries we serve or the opportunities available with us.
Services Our Insights Careers