Specially formulated for small businesses with 20 employees or fewer, this service will extend your ISMS to cover the additional requirements and controls set out in ISO 27701 for a one-off fee. It covers:
The consultant will review and update your risk assessments and risk documentation to include the privacy requirements of ISO 27701. The consultant will review and update your risk assessments and risk documentation to include the privacy requirements of ISO 27701.
The consultant will develop or amend documentation to meet the requirements of ISO 27701.
The consultant will review and update your ISO 27001 Statement of Applicability to reflect all additional ISO 27701 controls and ensure it is complete and accurate.
The ISO 27701 FastTrack 20 package puts your project into the hands of an experienced consultant who will help you extend your ISMS.
Your consultant will make sure that all the requirements of the Standard are met in a way that embraces any pre-existing practices, controls and documentation, in addition to providing the other important elements of the ISMS, thereby causing minimal disruption to your business.
You will be assigned a qualified consultant who will undertake all the key activities of extending your ISO 27001 ISMS to cover the requirements and controls for personal data.
This course will help you comply with Article 39 of the GDPR (General Data Protection Regulation) by demonstrating that you are continually training staff on their responsibilities. As ISO 27701 is based on the GDPR, this course will help you meet the relevant staff awareness controls. Includes up to 20 licences.
In line with the ISO 27001 FastTrack 20 service, this service applies to organisations that have a relatively low information security risk profile and 20 or fewer employees, including the CEO and management/executive team, based at a single site.
This service is delivered online, but can be delivered on-site if required. Consultancy expenses associated with travel and accommodation will be billed separately.