Draft
International Standard
ISO/IEC DIS 27555
Information security, cybersecurity and privacy protection — Guidelines on personally identifiable information deletion
Reference number
ISO/IEC DIS 27555
Edition 2
© ISO 2026
Draft International Standard
Read sample
Under development
This Draft International Standard is in the enquiry phase with ISO members.
Will replace ISO/IEC 27555:2021

ISO/IEC DIS 27555

Language
Format
CHF 67
* Shipping costs not included
Convert Swiss francs (CHF) to your currency

Abstract

This document contains guidelines for developing and establishing policies and procedures for deletion of personally identifiable information (PII) in organizations by specifying:

—    a harmonized terminology for PII deletion;

—    an approach for defining deletion rules in an efficient way;

—    a description of required documentation;

—    a broad definition of roles, responsibilities and processes.

This document is intended to be used by organizations where PII is stored or processed.

This document does not address:

—    specific legal provision, as given by national law or specified in contracts;

—    specific deletion rules for particular clusters of PII that are defined by PII controllers for processing PII;

—    deletion mechanisms;

—    reliability, security and suitability of deletion mechanisms;

—    specific techniques for de-identification of data.

General information

  • Status
     : Under development

    You can help develop this draft international standard by contacting your national member

    Stage
    : DIS ballot initiated: 12 weeks [40.20]
  • Edition
     : 2
    Number of pages
     : 27
  • Technical Committee :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030 
  • RSS updates

Life cycle

Got a question?

Check out our Help and Support

  2. Store
  3. Store
  4. ICS
  5. 35
  6. 35.030
  7. ISO/IEC DIS 27555