Topic-specific policies
ISO/IEC TS 27560


Search this site
 

ISMS templates

< Previous standard      ^ Up a level ^      Next standard >

 

ISO/IEC TS 27560 — Privacy technologies — Consent record information structure [DRAFT]

 

Abstract

“This document specifies an interoperable, open and extensible information structure for recording PII Principals' or data subjects' consent to data processing. It further provides guidance on the use of consent receipts and consent records associated with a PII Principal's data processing consent to support the:
    • provision of a record of the consent to the PII Principal;
    • exchange of consent information between information systems; and,
    • management of the lifecycle of the recorded consent.”
[Source: SC27 Standing Document 11 (2021)]
 

Introduction

This standard will specify an interoperable, open and extensible information structure for recording PII Principals' (data subjects') consent to data processing.

 

Scope of the standard

In addition to the specification, the standard will offer guidance on the use of consent receipts and consent records associated with a PII Principal’s data processing consent to support the:

  • Provision of a record of the consent to the PII Principal;
  • Exchange of consent information between information systems; and
  • Management of the lifecycle of the recorded consent.

The standard will not specify an exchange protocol for receipts and records, nor an exact data structure for such exchange.

 

Content of the standard

TBA.

 

Status

The project started in 2020. The 1st Working Draft is due.

 

Personal notes

None yet.

 

< Previous standard      ^ Up a level ^      Next standard >

Copyright © 2021 IsecT Ltd.