DIN Standards Committee Information Technology and IT Applications
Information security, cybersecurity and privacy protection - Guidelines on personally identifiable information deletion (ISO/IEC 27555:2021); German and English version prEN ISO/IEC 27555:2024
Abstract
The standard contains guidelines for developing and establishing policies and procedures for deletion of PII in organizations by specifying: - a harmonized terminology for PII deletion; - an approach for defining deletion rules in an efficient way; - a description of required documentation; and - a broad definition of roles, responsibilities and processes. This document is intended to be used by organizations where PII are stored or processed. This document does not address: - specific legal provision, as given by national law or specified in contracts; - specific deletion rules for particular clusters of PII as are to be defined by PII controllers for - processing PII; - deletion mechanisms; - reliability, security and suitability of deletion mechanisms; - specific techniques for de-identification of data.
Begin
2024-08-23
WI
JT013081
Planned document number
DIN EN ISO/IEC 27555
Project number
04301159
Responsible national committee
NA 043-04-13 GA - DIN/DKE Joint working committee Cybersecurity
Responsible european committee
CEN/CLC/JTC 13/WG 5 - Data Protection, Privacy and Identity Management
Responsible international committee
ISO/IEC JTC 1/SC 27/WG 5 - Identity management and privacy technologies
draft standard
Information security, cybersecurity and privacy protection - Guidelines on personally identifiable information deletion (ISO/IEC 27555:2021); German and English version prEN ISO/IEC 27555:2024
2024-12
Order from DIN Media
