ISO/IEC 29151:2017

This standard was last reviewed and confirmed in 2023. Therefore this version remains current.

Abstract

ISO/IEC 29151:2017 establishes control objectives, controls and guidelines for implementing controls, to meet the requirements identified by a risk and impact assessment related to the protection of personally identifiable information (PII).

In particular, this Recommendation | International Standard specifies guidelines based on ISO/IEC 27002, taking into consideration the requirements for processing PII that may be applicable within the context of an organization's information security risk environment(s).

ISO/IEC 29151:2017 is applicable to all types and sizes of organizations acting as PII controllers (as defined in ISO/IEC 29100), including public and private companies, government entities and not-for-profit organizations that process PII.

General information

Status
: Published

Publication date
: 2017-08
Edition
: 1

Number of pages
: 39
Technical Committee
: ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection
ICS
:
35.030 IT Security

Buy this standard

	Format	Language
std 1 166	PDF
std 2 166	Paper

CHF166

Life cycle

Now

Published

ISO/IEC 29151:2017

A standard is reviewed every 5 years
Stage: 90.93 (Confirmed)

Got a question?

Check out our FAQs

Customer care

+41 22 749 08 88

customerservice@iso.org

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)