标准摘要
[中文适用范围]: 本文件规定了根据ISO/IEC 27701标准提供隐私信息管理系统的审核与认证机构的要求,并提供了相关指导,同时补充了ISO/IEC 17021-1标准中的要求。本文件中的要求,需由提供隐私信息管理系统(PIMS)认证的机构在能力和可靠性方面加以体现。文件中的指导内容为提供PIMS认证的机构对这些要求提供进一步的解释。注:本文件可用于认证、同行评估或其他审核过程的依据。 [外文原描述]: This document specifies requirements and provides guidance for bodies providing audit and certification of a privacy information management system (PIMS) according to ISO/IEC 27701, in addition to the requirements contained within ISO/IEC 17021-1. The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing PIMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing PIMS certification. NOTE This document can be used as a criteria document for accreditation, peer assessment or other audit processes.
英文名称Information security, cybersecurity and privacy protection - Requirements for bodies providing audit and certification of privacy information management systems