PIMSI
Privay Information Management System (ISO 27701) Implementation


PIMSI Course Introduction


The term "information privacy" is broader than "information security". Other principles, for example, consent and choice, purpose legitimacy and specification, collection limitation, individual participation and access are included. Regulatory compliance (e.g. PDPA) might be a goal for some organizations, but implementing a compliance-based "information privacy" does not seem like a good practice. The internationally recognized "ISO/IEC 27701" allows you to build a risk-based privacy information management system in your organization. This 2-days course is led by an expert instructor with over a decade of experience and familiarity with the ISO resources.


PIMSI Course Objectives


    • To learn information privacy risk management
    • To learn "30+31+18" privacy controls
    • To map between ISO/IEC 27701 and PDPA
    • To explore resources on PIMS


PIMSI Course Prerequisite


    • ISMSI


Target Group


    • Organizations aiming to comply with ISO/IEC 27701, Consultant, Auditor


Course Outline of PIMSI


Day 1
    • The myths surrounding information privacy
    • Why PIMS?
    • Risk management framework
    • Additional requirements to ISO/IEC 27001

Day 2
    • Privacy controls for PII controllers
    • Privacy controls for PII processors
    • Mapping ISO/IEC 27701 to other publication
    • Recommended resources on PIMS

1-2 April 2025

Course Level

Intermediate

Duration

2 Days

Tuition Fee

18,500.00 THB

Speaker



Our website uses both essential and non-essential cookies to analyze use of our products and services. This agreement applies to non-essential cookies only. By accepting, you are agreeing to third parties receiving information about your usage and activities. If you choose to decline this agreement, we will continue to use essential cookies for the operation of the website. View Policy