ISO/IEC 27701:2025 Induction Course

An eLearning course providing employees with an understanding of the ISO/IEC 27701 Management System.

ISO/IEC 27701:2025 Induction  (Integrated with ISO 27001 & ISO 9001) is an introductory course that provides participants with a practical understanding of the requirements and key concepts of a Privacy Information Management System (PIMS) based on ISO/IEC 27701:2025, and how it can be implemented and managed as part of an integrated management system alongside ISO 27001 (ISMS) and ISO 9001 (QMS).

The course explains the common management-system structure and how to align governance, risk-based thinking, roles and responsibilities, documented information, operational controls, internal audits, management review, and continual improvement across quality, information security, and privacy.

Participants will learn how privacy requirements connect to security controls and business processes, enabling more efficient implementation, reduced duplication of effort, and improved audit readiness for organizations operating multiple standards. The course also extends some insights on two key requirements of privacy – Privacy by Default and Privacy by Design.

Objectives

After successful completion of the course, attendees will have gained an understanding of:

  • 27701 requirements and concepts
  • Privacy principles – 29100:2024
  • Basics of Privacy risk assessment
  • Privacy Impact assessment
  • Privacy by Default
  • Privacy by Design
  • Usefulness of Integration other Management syste

Pre-requisites:

  • Prior knowledge of management system standards
  • Prior knowledge of the ISO/IEC 27701:2019 standard (structure, key terms, and intent of requirements) is expected.
  • Basic understanding of ISO/IEC 27001 concepts (ISMS fundamentals such as risk, controls, internal audit, continual improvement) is recommended, especially where the organization integrates PIMS with ISMS.
  • Familiarity with privacy and personal data / PII concepts and common privacy roles (e.g., controller/processor) is recommended.
  • For participants who are based in the EU and/or work with EU personal data processing activities, a working knowledge of the EU General Data Protection Regulation (GDPR) is expected.

Audience:

This course is intended for:

  • Anyone who has Information Security / Privacy responsibilities (e.g., CISO, DPO, ISMS/PIMS team members, security/privacy practitioners) interested in implementing ISO/IEC 27701:2025.
  • Data governance teams.
  • People with exposure to management systems and audits.
  • Individuals representing their organization for implementation and/or audit against ISO/IEC 27701:2025.
  • Trainers or consultants in ISMS/PIMS who want to understand the guidelines of the new standard.

 

All our public courses can also be delivered in-house at your premises either as standard or tailored depending on the needs and requirements of your business; Contact us if you are interested or want to know more.

Management Systems Training

In-house training

All training courses provided by DNV can be provided as dedicated session customised to your organization.

Our trainers

At DNV, our trainers are more than subject matter experts - they are passionate, high-quality professionals dedicated to empowering individuals and organizations through knowledge.

APQP4Wind Training

APQP4Wind is the common frame of reference to be used in the industry to strengthen the cooperation between manufacturers and suppliers

Cybersecurity Training

Enable specialists and leaders alike to gain job-specific skills and practical knowledge to protect your company and advance your personal career needs.

Environment and energy training

Public concern on environment and energy issues, stricter environmental legislation and increased media attention put more demands on businesses today

Food safety training

The food and beverage industry is moving to satisfy demands from international consumers and to open new market opportunities

Health and safety training

Your company is expected to care for its employees by managing safety and health in a professional way

Healthcare training

Every patient and service user across the globe should get the best care possible

Medical devices training

Production of medical devices is a strictly regulated business. In almost all countries, and for most medical products, there are requirements and standards to which manufacturers need to show compliance

Quality & performance training

An effective quality management system in place can improve your company’s quality processes and overall performance and success

Social responsibility training

Ensuring your commitment to safeguard human rights and operate in an ethical, responsible manner is essential to instill ethical practices and promote a culture of corporate sustainability