CIRQ Accredited to Audit and Certify ISO 27701

Insights Association subsidiary CIRQ (the Certification Institute for Research Quality) has been accredited to audit and certify MR and data analytics companies to the ISO 27701 Standard, which supports compliance with the EU's GDPR, California's CCPA, and other data privacy requirements.

Released in August 2019, ISO 27701 (a PIMS standard - Privacy Information Management System), provides detailed operational checklists that can be adapted to a variety of regulations. Companies document their policies and procedures in line with these checklists, with records then audited by internal and CIRQ auditors. The standard also outlines a framework for 'Personally Identifiable Information (PII) Controllers' and 'PII Processors' to manage data privacy.

ANAB (the ANSI National Accreditation Board) has now accredited CIRQ to complete ISO 27701 audits and certifications. The standard is an extension of ISO 27001, which means that companies intending to implement ISO 27701 certification must be certified to ISO 27001, or complete certifications to both standards simultaneously.

Juliana Wood (pictured), MD of CIRQ, comments: 'Complying with GDPR requirements and a wide array of US data privacy laws and regulations can be a daunting task. Implementation of ISO 27001 and 27701 can reduce the risk of privacy regulation infractions while also illustrating to clients a keen attention to detail and dedication to data protection'.

Web sites: www.insightsassociation.org and www.cirq.org .

All articles 2006-23 written and edited by Mel Crowther and/or Nick Thomas, 2024- by Nick Thomas, unless otherwise stated.