ANALYSIS OF THE INTERNATIONAL STANDARD ISO 27701 AND THE FORMATION OF RECOMMENDATIONS FOR ITS USE

doi:10.48612/jisp/t17a-355v-exe9

ANALYSIS OF THE INTERNATIONAL STANDARD ISO 27 701 AND THE FORMATION OF RECOMMENDATIONS FOR ITS USE

Information security application

Authors:

MORGUNOV V. A. ANTONOV R. A.

Abstract:

Any organization, processing personal data of citizens of the European Union is obliged to
comply with the requirements of GDPR (General Data Protection Regulation). However, the regulations
do not contain information about how to comply with these requirements in practice. The international
standard ISO 27 701 solves this problem because it contains specific controls to fulfill requirements
specified above. In the course of the research, the standard was analyzed and there were made
up recommendations that can be applied to all types and sizes of organizations, including public and
private companies, government entities and non-profit organizations that process personal data of
citizens of the European Union.