How ISO 27001 Can Help Achieve GDPR Compliance

Isabel Maria Lopes, Teresa Guarda, Pedro Oliveira

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

Abstract

Personal Data Protection has been among the most discussed topics lately and a reason for great concern among organizations. The EU General Data Protection Regulation (GDPR)is the most important change in data privacy regulation in 20 years. The regulation will fundamentally reshape the way in which data is handled across every sector. The organizations had two years to implement it. As referred by many authors, the implementation of the regulation has not been an easy task for companies. The question we aim to answer in this study is how far the implementation of ISO 27001 standards might represent a facilitating factor to organizations for an easier compliance with the regulation. In order to answer this question, several websites (mostly of consulting companies)were analyzed, and the aspects considered as facilitating are listed in this paper.

Original languageEnglish
Title of host publication14th Iberian Conference on Information Systems and Technologies, CISTI 2019
EditorsAlvaro Rocha, Isabel Pedrosa, Manuel Perez Cota, Ramiro Goncalves
Number of pages6
Place of PublicationLos Alamitos, CA
PublisherIEEE Computer Society Press
Publication dateJun 2019
Article number8760937
ISBN (Print)9781728115528
ISBN (Electronic)9789899843493
DOIs
Publication statusPublished - Jun 2019
Externally publishedYes
Event14th Iberian Conference on Information Systems and Technologies, CISTI 2019 - Coimbra, Portugal
Duration: 19 Jun 201922 Jun 2019
Conference number: 14

Conference

Conference14th Iberian Conference on Information Systems and Technologies, CISTI 2019
Number14
Country/TerritoryPortugal
CityCoimbra
Period19/06/201922/06/2019
SeriesIberian Conference on Information Systems and Technologies, CISTI
ISSN2166-0727

Keywords

  • Regulation (EU) 2016/679
  • ISO/IEC 27001
  • General data protection regulation

Cite this