Topic-specific policies
ISO/IEC TS 27560

Search this site

ISMS templates

< Previous standard      ^ Up a level ^      Next standard >


ISO/IEC TS 27560 — Information technologies — Consent record information structure [DRAFT]





This standard will specify an interoperable, open and extensible information structure for recording PII Principals' (data subjects') consent to data processing.


Scope of the standard

In addition to the specification, the standard will offer requirements and recommendations on the use of consent receipts and consent records associated with a PII Principal’s data processing consent to support the:

  • Provision of a record of the consent to the PII Principal;
  • Exchange of consent information between information systems; and
  • Management of the lifecycle of the recorded consent.

The standard will not specify an exchange protocol for receipts and records, nor an exact data structure for such exchange.


Content of the standard




Drafting started in 2020. ISO/IEC JTC 1/SC 27/WG 5 is responsible for this standard.

It is at 5th Working Draft stage.

Publication was planned for mid-2023 ...


Personal notes

.. but looks likely to be delayed unless the CD, DIS and FDIS stages whizz through at breakneck speed.


< Previous standard      ^ Up a level ^      Next standard >

Copyright © 2023 IsecT Ltd.