ISO/IEC TS 27006-2:2021 信息安全管理系统审计和认证机构的要求 第2部分：隐私信息管理系统

标准编号：ISO/IEC TS 27006-2:2021

中文名称：信息安全管理系统审计和认证机构的要求 第2部分：隐私信息管理系统

英文名称：Requirements for bodies providing audit and certification of information security management systems — Part 2: Privacy information management systems

发布日期：2021-02

标准范围

除了ISO/IEC 27006和ISO/IEC 27701中包含的要求之外，本文件还为根据ISO/IEC 27701结合ISO/IEC 27001提供隐私信息管理系统（PIMS）审核和认证的机构规定了要求并提供了指导。它主要旨在支持提供PIMS认证的认证机构的认可。提供PIMS认证的任何人都需要证明本文件中包含的要求的能力和可靠性，本文件中包含的指南为提供PIMS认证的任何机构提供了对这些要求的额外解释。注:本文件可用作认证、同行评估或其他审核流程的标准文件。

This document specifies requirements and provides guidance for bodies providing audit and certification of a privacy information management system (PIMS) according to ISO/IEC 27701 in combination with ISO/IEC 27001, in addition to the requirements contained within ISO/IEC 27006 and ISO/IEC 27701. It is primarily intended to support the accreditation of certification bodies providing PIMS certification.
The requirements contained in this document need to be demonstrated in terms of competence and reliability by anybody providing PIMS certification, and the guidance contained in this document provides additional interpretation of these requirements for any body providing PIMS certification.
NOTE This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

标准预览图