France's data protection authority, the CNIL, published a page on its website on the ISO 27701 standard. The CNIL breaks down the components of the ISO standard and highlights the agency's contribution to its creation. The agency states the EU General Data Protection Regulation was taken into consideration as the standard was formed. It adds ISO 27701 is not GDPR-specific and should not be used as a GDPR certification mechanism.
If you want to comment on this post, you need to login.