Hi All,
ISO/ISC just published ISO/IEC 27559:2022 Information security, cybersecurity, and privacy protection – Privacy enhancing data de-identification framework
This document provides a framework for identifying and mitigating re-identification risks and risks associated with the lifecycle of de-identified data.
This document applies to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, that are PII controllers or PII processors acting on a controller's behalf, implementing data de-identification processes for privacy-enhancing purposes.
You can preview this standard here:
https://www.iso.org/obp/ui/#iso:std:iso-iec:27559:ed-1:v1:enYou can purchase this standard here:
https://www.iso.org/standard/71677.html------------------------------
Michael Roza CPA, CISA, CIA, MBA, Exec MBA
------------------------------