Introduction to PIMS & ISO/IEC 27701:2025 Standard. Comprehensive foundation in the core requirements of a Privacy Information Management System (PIMS). This module establishes the structural framework of the standard and explains how it extends existing information security principles into dedicated data privacy management.
Privacy Governance & Organizational Accountability. Methods for establishing clear privacy governance structures. Participants will learn to define privacy roles and responsibilities, create internal accountability mechanisms, and set up reporting frameworks aligned with organizational objectives and executive oversight.
Integrated PIMS Design & Implementation. Strategies for seamlessly embedding a PIMS into an existing Information Security Management System (ISMS) based on ISO/IEC 27001. This covers the structural integration of policies, streamlined operational processes, and shared security-privacy controls.
Regulatory Alignment & Global Data Protection. Analysis of global privacy regulations and regulatory obligations. This module focuses on translating statutory requirements into operational privacy policies, procedures, and internal controls to maintain cross-border compliance.
Privacy Risk Management & Impact Assessments. Practical techniques for identifying, evaluating, and mitigating privacy risks. Focuses on the data lifecycle—including collection, processing, storage, sharing, and disposal—and managing the specific risks associated with processing Personally Identifiable Information (PII).
Privacy by Design & Data Lifecycle Management. Application of Privacy by Design and Privacy by Default principles. Topics include consent management architectures, data minimization strategies, purpose limitation controls, and building privacy directly into the life cycle of systems and products.
Data Subject Rights & Third-Party Privacy Obligations. Operationalizing workflows to fulfill data subject rights (such as access, deletion, and portability). This module also addresses managing third-party privacy risks, evaluating vendor data processing agreements, and mapping cross-border data transfer mechanisms.
Compliance Reviews, Gap Analysis, & Readiness. Hands-on skills for conducting baseline evaluations, gap assessments, and readiness reviews. Managers will learn how to measure current organizational conformity against ISO/IEC 27701:2025 requirements to prepare for formal certification.
Monitoring, Internal Audit, & Continuous Improvement. Establishing internal audit programs, compliance monitoring metrics, and management review frameworks. Participants will master handling corrective actions and building continuous improvement loops to sustain PIMS effectiveness over time.
Leading Certification Initiatives & Stakeholder Trust. Strategies for leading an organization through the formal ISO/IEC 27701:2025 certification process. Focuses on gathering evidence, managing external auditors, and leveraging compliance to strengthen stakeholder trust and demonstrate verifiable data protection.
Dates: Sat/Sun, 4 Weekends
6,7,13,14,20,21,27,28 June 2026
Time: 10:00 am to 2:00 pm
Venue: Online
Course Fee for Non-Members: Rs. 19999/-
Course Fee for ISC2 Delhi Chapter Members: Rs. 9999/-
Certification Cost: Included
No Annual Maintenance Fee
32 CPEs shall be credited to ISC2 Members' account
Exam Duration: 1 hour
Number of Questions: 60
Format: Multiple Choice
Retake Fee: 499/-
Risk & compliance professionals
Privacy professionals
AI/ML engineers
IT governance teams
Business leaders and policymakers
Foundational knowledge of the information assurance, data governance, or risk and compliance domain
A minimum of 5 years of industry experience