Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
ISO Standards Interpretation
A systematic methodology for de-identification of personally identifiable information 1. Introduction to ISO/IEC 27559 ISO/IEC 27559 establishes a structured framework for de-identification of personally identifiable information (PII), providing organizations with a systematic methodology to reduce privacy risks while maintaining the…
Translating privacy principles into actionable engineering and organisational practices 1. Introduction to ISO/IEC 27561 ISO/IEC 27561 provides a structured framework for operationalising privacy principles within organizations, translating high-level privacy requirements into actionable engineering processes and organisational practices. It bridges the…
Concrete mechanisms and implementation guidance for privacy-preserving authentication 1. Overview of ISO/IEC 27553-2 Mechanisms ISO/IEC 27553-2:2022 builds upon the framework established in Part 1 by providing detailed technical specifications for privacy-preserving authentication mechanisms. While Part 1 defines the principles and…
End-to-end framework for data de-identification and re-identification risk management 1. Understanding ISO/IEC 27554:2022 ISO/IEC 27554:2022 establishes a comprehensive framework for de-identification of personally identifiable information (PII). In an era of big data analytics, artificial intelligence, and open data sharing, organizations…
Comprehensive guidelines for selecting and deploying Privacy Enhancing Technologies 1. Introduction to ISO/IEC 27555:2022 ISO/IEC 27555:2022 provides comprehensive guidelines for Privacy Enhancing Technologies (PETs) — a diverse set of tools, techniques, and systems designed to protect personal information while enabling…
Structured multi-criteria decision framework for selecting Privacy Enhancing Technologies 1. The Need for a PET Selection Framework ISO/IEC 27556:2022 addresses a fundamental challenge faced by privacy engineers and decision-makers: how to systematically select the most appropriate Privacy Enhancing Technology (PET)…
Smart home security and privacy guidelines addressing multi-vendor interoperability, voice assistant security, and residential IoT protection 1. Introduction to ISO/IEC 27403:2023 ISO/IEC 27403:2023 provides IoT security and privacy guidelines specifically tailored for domotics (smart home) environments. Published as part of…
Standardised cybersecurity labelling framework for IoT products with 1-5 star ratings, conformity assessment, and market implications 1. Purpose of ISO/IEC 27404:2024 ISO/IEC 27404:2024 defines a cybersecurity labelling framework for IoT products, enabling consumers and procurement professionals to make informed security…
A comprehensive engineering guide to Privacy Impact Assessment methodology 1. Introduction to ISO/IEC 27551:2022 ISO/IEC 27551:2022 provides structured guidelines for conducting Privacy Impact Assessments (PIA) within any organization that processes personally identifiable information (PII). Published as part of the ISO/IEC…
Framework and principles for privacy-preserving online authentication 1. Scope and Purpose of ISO/IEC 27553-1 ISO/IEC 27553-1:2022 establishes a comprehensive framework for the use of personally identifiable information (PII) in online authentication systems. As digital services increasingly rely on identity verification…