ISO 27701 Expected Evidence Spreadsheet

The evidence items that you should expect the auditors (or a customer) to request from your company.

About ISO 27701

ISO 27701 is a privacy and personally identifiable information (PII) focused extension of the popular ISO 27001 certification for security.

I recommend considering this certification if your organization processes a significant amount of sensitive PII such as healthcare data or personal financial information. In addition, this standard can help to demonstrate to customers that working with your organization will help them remain in compliance with regional privacy regulations.