Hello, welcome to BCC Inc.
CN 400-016-9000

System certification: necessary qualification for enterprises

The management system is developed from the concept of quality management and inherits the essence of quality management. 

Personally identifiable information protection management system

ISO 29151

ISO/IEC 29151 is a joint publication by the International Organization for Standardization and the International Electrotechnical Commission on controls and guidance for the processing of Personally Identifiable Information (PII) to meet the requirements identified by risk assessments and privacy impact assessments related to the protection of PII. It focuses on privacy technology, covers 26 control domains and 181 control measures, standardizes the relevant behaviors of data operations in various aspects of personal information collection, storage, processing, use and disclosure, and provides guidance for enterprises to ensure personal privacy security and control compliance risks. It is applicable to any organization that has a need for privacy protection and provides a broad guide to the protection of personally identifiable information.

 


ISO/IEC 29151 is based on ISO/IEC 27002 Information Technology - Security Technology - Information Security Control Practice Rules and ISO related security standard specifications, providing a set of guidance for information security and PII protection control. It also guides organizations to select controls that match the specific treatment of PII based on the results of risk analysis to develop comprehensive and consistent control systems that reduce the risk of privacy breaches and reduce breaches.