ISO/IEC 27701 - Privacy Information Management (GDPR)

At Zensai, we are awarded the ISO/IEC 27701:2019 certification for our Privacy Information Management System (PIMS) used for the provisioning and development of Learn365.

This is an extension to the ISO/IEC 27001:2022 certification for our Information Security Management System (ISMS) used for the provisioning and development of Learn365 that we achieved in July 2024.

We will review the PIMS policy at least annually to respond to any risk assessment or risk treatment requirements changes. In this article, we will describe ISO/IEC 27701:2019, and Zensai's certification and commitment to continuously comply with the requirements of the policy. 

 

In this article:

 

What is ISO/IEC 27701:2019?

The ISO 27701 certification is a newly published privacy extension standard granted to organizations who meet the global standard for effective information security. It provides additional guidance for compliance with the European Union’s General Data Protection Regulation (GDPR) and other crucial data privacy requirements.

After receiving a recommendation from the ISO/IEC accreditation body, the Learn365 product and Zensai company has now been declared ISO 27701 certified for its outstanding management of personal information and private data protection. This ISO 27701 privacy extension enables us to take our information security management system (ISMS) to the next level, with expanded guidelines on how personally identifiable information (PII) should be managed and protected.

 

Zensai's certification and commitments

At Zensai, we have received the ISO/IEC 27701 certification for operating a PIMS that complies with the requirements of ISO/IEC 27701 for the following scope:

"Zensai International's corporate information security and privacy management system used for the provision and development of a SAAS-Learning Management System (LMS) that provide Course & Content Management, Support Multiple Course Types & Learning Styles, Reporting & Tracking, Training Plans and Certifications & Compliance. This is in accordance with latest version of the Statement of Applicability. Rev 9.0 20230620 aligned with ISO/IEC 27001 certificate IS 747698."

With our PIMS, we practice an ongoing commitment to protect the confidentiality and integrity of personal data, including that of our customers, external partners, and employees. 

We also practice an ongoing commitment to protect the confidentiality, integrity, and availability of all the physical and digital information assets throughout Zensai. This is done to preserve the competitive edge, cash flow, profitability, legal, regulatory & contractual compliance, and the commercial image of Zensai.

Information and information security requirements will continue to be aligned with these goals of Zensai. We are audited against the standard every year by an independent third party and will review the PIMS policy at least annually to respond to any changes in the risk assessment or risk treatment requirements.

 

What does our ISO/IEC 27701:2019 mean to you as a customer?

Receiving ISO/IEC 27701:2019 certification shows that our highly-trusted product and company meet the highest standards of personal data management necessary for international organizations.

It also demonstrates how seriously we take data privacy and the management of all sensitive information.

This is beneficial for our entire organization and the people we work with:

 

Customers

Customers can now be even more confident that Learn365 is safeguarding their personal information from data breaches and emerging security risks. With this certification, we demonstrate our ongoing commitment to information security, further developing the trust you place in us to keep your personal information safe and secure.

 

Partners

Learn365 aligns our security standards with those of partner organizations, ensuring increased transparency, more effective business agreements, and a higher confidence in all collaborations.

 

Employees

ISO 27701 increases awareness of GDPR and its significance, enabling employees to explain the depth of our data privacy practices to external stakeholders and feel safely shielded from potential security threats, whether working in-house or remotely.

 

Our ISO/IEC 27701 certification

Find our ISO/IEC 27701 certification here:

Was this article helpful?
2 out of 3 found this helpful