Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
ISO/IEC 27701:2025 – Privacy Management Step by Step
Role Play
Rating: 5.0 out of 5(1 rating)
113 students

ISO/IEC 27701:2025 – Privacy Management Step by Step

Build a certifiable Privacy Information Management System (PIMS) using the ISO 27701:2025 standalone standard
Last updated 6/2026
English

What you'll learn

  • Implement a complete PIMS aligned to all ISO 27701:2025 clauses and controls
  • Conduct privacy risk assessments, DPIAs, Transfer Impact Assessments, and FRIAs for AI
  • Design privacy governance structures with named executive accountability
  • Build multi-jurisdictional privacy policies and procedures from scratch
  • Manage data subject rights across GDPR, AI Act, and global privacy regulations
  • Establish a PII inventory, data mapping, and classification framework
  • Audit your PIMS, manage findings, and drive continuous improvement
  • Prepare for standalone or integrated ISO 27701:2025 PIMS certification

Course content

12 sections30 lectures2h 46m total length
  • Welcome & Course Overview5:47
  • What Changed — ISO 27701:2019 to 20257:07
  • Quiz: Introduction

Requirements

  • Basic understanding of data protection or privacy concepts (GDPR awareness is helpful)
  • No prior ISO 27001 certification required — this course covers the standalone PIMS path
  • Familiarity with organizational compliance frameworks is an advantage

Description

This course contains the use of Artificial Intelligence.

Privacy is no longer optional. With over 144 countries having data protection laws, GDPR fines exceeding €5.5 billion, and the EU AI Act in full effect, organizations need a systematic, certifiable approach to privacy management.

ISO/IEC 27701:2025 is the international standard for Privacy Information Management Systems (PIMS). In October 2025, it was elevated to a standalone certifiable standard — organizations can now achieve PIMS certification independently, without ISO 27001.

This course takes you step by step through a complete PIMS implementation using a realistic model company — DataTrust Solutions, a SaaS provider operating across 4 countries and processing data for 12,000+ customer organizations.


What You Will Build

  • A scoped, leadership-accountable Privacy Information Management System

  • A comprehensive PII inventory, data map, and classification framework

  • Privacy risk assessments, DPIAs, Transfer Impact Assessments, and FRIA for AI

  • Multi-jurisdictional privacy policies, data subject rights procedures, and consent frameworks

  • An internal audit programme and privacy incident management process

  • A full certification readiness checklist for ISO 27701:2025

  Course Highlights

  • Covers all 12 implementation steps across 12 sections and 28 lectures (~9 hours)

  • Real-world case study: DataTrust Solutions faces GDPR, AI Act, cross-border transfers, and more

  • Covers both standalone and integrated (with ISO 27001:2022) PIMS paths

  • Includes AI and privacy management, multi-jurisdictional compliance, and breach management

  • Aligned to ISO 27701:2025, GDPR, EU AI Act, and global privacy frameworks

  • Prepares you for external certification audit under ISO 27706:2025

Who this course is for:

  • Privacy professionals and Data Protection Officers (DPOs) seeking a structured PIMS framework
  • Information security managers and ISO 27001 practitioners expanding into privacy
  • Compliance officers and consultants advising organizations on privacy standards
  • IT managers and engineers responsible for privacy by design in their systems
  • Legal and regulatory professionals managing cross-border data transfers
  • Anyone preparing for ISO 27701:2025 certification or audit readiness