Skip to content
Please enter a keyword to search

  • BS 10012(2017) : 2017

    Current The latest, up-to-date edition.

    DATA PROTECTION - SPECIFICATION FOR A PERSONAL INFORMATION MANAGEMENT SYSTEM

    Available format(s):  Hardcopy, PDF

    Language(s):  English

    Published date:  01-01-2017

    Publisher:  British Standards Institution

    Add To Cart

    Table of Contents - (Show below) - (Hide below)

    Foreword
    0 Introduction
    1 Scope
    2 Normative references
    3 Terms, definitions and abbreviations
    4 Context of the organization
    5 Leadership
    6 Planning
    7 Support
    8 Operation
    9 Performance evaluation
    10 Improvement
    Annex A (informative) - ISO standardized management
            system
    Annex B (informative) - Comparison between the GDPR
            2016 and UK practice under the DPA 1998
    Annex C (informative) - Codes, seals, certifications and
            trust marks
    Bibliography

    Abstract - (Show below) - (Hide below)

    Defines requirements for a personal information management system (PIMS), which provides a framework for maintaining and improving compliance with data protection requirements and good practice.

    General Product Information - (Show below) - (Hide below)

    Committee IDT/1
    Development Note Supersedes 16/30339452 DC. Supersedes BS 10012(2009), which remains current and will be withdrawn on 25/05/2018. (04/2017)
    Document Type Standard
    Publisher British Standards Institution
    Status Current
    Supersedes

    Standards Referenced By This Book - (Show below) - (Hide below)

    BS ISO/IEC 29151:2017 Information technology. Security techniques. Code of practice for personally identifiable information protection
    BS PAS 17271(2017) : 2017 PROTECTING CUSTOMERS FROM FINANCIAL HARM AS A RESULT OF FRAUD OR FINANCIAL ABUSE - CODE OF PRACTICE
    DIN ISO/IEC 27018:2017-08 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - CODE OF PRACTICE FOR PROTECTION OF PERSONALLY IDENTIFIABLE INFORMATION (PII) IN PUBLIC CLOUDS ACTING AS PII PROCESSORS (ISO/IEC 27018:2014)
    ISO/IEC 29151:2017 Information technology — Security techniques — Code of practice for personally identifiable information protection

    Standards Referencing This Book - (Show below) - (Hide below)

    PD ISO/TR 18128:2014 Information and documentation. Risk assessment for records processes and systems
    BS EN ISO 9001:2015 Quality management systems. Requirements
    BS EN ISO/IEC 27001:2017 Information technology. Security techniques. Information security management systems. Requirements
    BS EN ISO 14001:2015 Environmental management systems. Requirements with guidance for use
    BS ISO/IEC 20000-1:2011 Information technology. Service management Service management system requirements
    BS EN ISO 19011:2011 Guidelines for auditing management systems
    BS ISO/IEC 27018:2014 Information technology. Security techniques. Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
    BS ISO 31000:2009 Risk management. Principles and guidelines
    BS PAS 99(2012) : 2012 SPECIFICATION OF COMMON MANAGEMENT SYSTEM REQUIREMENTS AS A FRAMEWORK FOR INTEGRATION
    BS EN ISO 9000:2015 Quality management systems. Fundamentals and vocabulary
    BS ISO 55001:2014 Asset management. Management systems. Requirements
    PD ISO GUIDE 73:2009 Risk management. Vocabulary
    View more information

    • Access your standards online with a subscription

      Features

      • Simple online access to standards, technical information and regulations
      • Critical updates of standards and customisable alerts and notifications
      • Multi - user online standards collection: secure, flexibile and cost effective