Numéro de référence
ISO/IEC 27018:2014
© ISO 2024
ISO/IEC 27018:2014
Technologies de l'information — Techniques de sécurité — Code de bonnes pratiques pour la protection des informations personnelles identifiables (PII) dans l'informatique en nuage public agissant comme processeur de PII
Edition 1
2014-08
Annulée
Annulée (Edition 1, 2014)

Résumé

ISO/IEC 27018:2014 establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment.

In particular, ISO/IEC 27018:2014 specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for the protection of PII which might be applicable within the context of the information security risk environment(s) of a provider of public cloud services.

ISO/IEC 27018:2014 is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, which provide information processing services as PII processors via cloud computing under contract to other organizations.

The guidelines in ISO/IEC 27018:2014 might also be relevant to organizations acting as PII controllers; however, PII controllers can be subject to additional PII protection legislation, regulations and obligations, not applying to PII processors. ISO/IEC 27018:2014 is not intended to cover such additional obligations.

Informations générales

  • État actuel
     : Annulée
    Date de publication
     : 2014-08
    Stade
    : Annulation de la Norme internationale [95.99]
  • Edition
     : 1
  • Comité technique :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030 
  • RSS mises à jour

Cycle de vie

Vous avez une question?

Consulter notre Aide et assistance

  2. Store
  3. Catalogue de normes
  4. ICS
  5. 35
  6. 35.030
  7. ISO/IEC 27018:2014