ISO/IEC 27018:2019

ISO/IEC 27018:2019 is a standard that serves as guidelines or code of conduct for selecting PII protection controls within the process of implementing a cloud computing information security management system based on ISO/IEC 27001. Earning the ISO/IEC 27018:2019 certification is an important part of establishing a baseline of security for Hubilo as we process data in the cloud.

bsi 27018
About ISO/IEC 27018:2019

ISO/IEC 27018:2019 relates to one of the most critical components of cloud privacy – the protection of personally identifiable information (PII). This standard focuses in two ways on security controls for public-cloud service providers that process PII.

 

  • It builds upon existing ISO/IEC 27002 controls by adding specific items for cloud privacy.
  • It provides entirely new security controls for personal data.

 

ISO/IEC 27018:2019 guarantees the security of personal data. It recommends security measures dedicated explicitly to the protection of personal data, which are complementary to the measures recommended in the Annex of ISO 27001.


In addition to that, it provides important implementation controls and guidelines for regulating the processing of personal data in the cloud. ISO/IEC 27018:2019 provides criteria to help you avoid information security risks and strengthen trust among your customers.

Certification Details

Certification: Management System for Protection of PII in Public Clouds Acting as PII Processors – ISO/IEC 27018:2019

Effective Date: July 20, 2021

Expiry Date: July 19, 2024

Certificate number: PII 752021 (View it here)

Everything executives need to know

ISO/IEC 27018:2019 certification demonstrates that our privacy policies and procedures are robust and in line with its high standards. It gives our customers more assurance about how we process their data according to the very highest industry standards.

See Other Certifications