Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
ISO Standards Interpretation
Reference architecture for privacy-preserving systems: design patterns, data flows, and engineering implementation 1. Reference Architecture for Privacy-Preserving Systems ISO/IEC 29101 defines a reference architecture for privacy-preserving systems that addresses the entire PII processing lifecycle. The architecture is organized into four…
Assessing and improving organizational privacy capability using the maturity model approach 1. Understanding the Privacy Capability Maturity Model ISO/IEC 29102 provides a capability maturity model specifically designed for assessing and improving an organization’s privacy management capabilities. The model defines five…
Framework for implementing privacy by design throughout the system lifecycle with privacy-enhancing technologies and engineering processes 1. ISO/IEC 27706:2022 — Privacy by Design Framework ISO/IEC 27706:2022 provides requirements and guidelines for implementing privacy by design (PbD) throughout the lifecycle of…
Standardized test methods for measuring volatile organic compound and particulate emissions from office electronic devices ISO/IEC 28360-1 establishes standardized methodologies for determining chemical emission rates from electronic office equipment, including printers, copiers, computers, and displays. As modern office environments become…
Specialized emission testing protocols for printers, copiers, and multifunction printing devices ISO/IEC 28360-2 specifically addresses chemical emission measurement for printing and imaging equipment, building upon the general framework established in Part 1. Printers present unique emission challenges due to their…
Sector-specific privacy guidelines for financial technology services and platforms 1. Introduction to ISO/IEC 27562 ISO/IEC 27562 provides specialized privacy guidelines tailored to the financial technology (fintech) sector, addressing the unique privacy challenges that arise from the convergence of financial services…
Comprehensive guidelines for protecting PII throughout the AI system lifecycle 1. Introduction to ISO/IEC 27565 ISO/IEC 27565 provides comprehensive guidelines for protecting personally identifiable information (PII) throughout the lifecycle of artificial intelligence (AI) systems, from data collection and model training…
A comprehensive framework for age assurance systems balancing privacy and regulatory compliance 1. Introduction to ISO/IEC 27566-1 ISO/IEC 27566-1 establishes a comprehensive framework for age assurance systems — technical solutions that estimate or verify an individual’s age for the purpose…
Extension to ISO/IEC 27001 for privacy information management with PII controller and processor requirements 1. ISO/IEC 27701:2019 — Privacy Extension to ISO/IEC 27001 ISO/IEC 27701:2019 extends the ISO/IEC 27001 information security management system (ISMS) framework to address privacy information management…
A comprehensive framework for organizational privacy risk assessment and treatment 1. Introduction to ISO/IEC 27557 ISO/IEC 27557 provides a comprehensive framework for organizations to identify, assess, treat, and monitor privacy risks within their operations. Published as part of the ISO/IEC…