naSRPS EN ISO/IEC 27555:2026

Information security, cybersecurity and privacy protection - Guidelines on personally identifiable information deletion (ISO/IEC DIS 27555:2026)

General information

Current stage: 40.20 Effective date: May 28, 2026

Next stage: 40.60 Next stage date: Jul 27, 2026

Originator: ISS

Owner: I224

Type: European Norm

ICS: 35.030

Languages: English

Buying

Уколико желите да набавите овај документ обратите се на следећу адресу: prodaja@iss.rs

Scope

This document contains guidelines for developing and establishing policies and procedures for deletion of personally identifiable information (PII) in organizations by specifying:
—    a harmonized terminology for PII deletion;
—    an approach for defining deletion rules in an efficient way;
—    a description of required documentation;
—    a broad definition of roles, responsibilities and processes.
This document is intended to be used by organizations where PII is stored or processed.
This document does not address:
—    specific legal provision, as given by national law or specified in contracts;
—    specific deletion rules for particular clusters of PII that are defined by PII controllers for processing PII;
—    deletion mechanisms;
—    reliability, security and suitability of deletion mechanisms;
—    specific techniques for de-identification of data.

Life cycle

PREVIOUSLY

PUBLISHED
SRPS EN ISO/IEC 27555:2025

NOW

PROJECT
naSRPS EN ISO/IEC 27555:2026
40.20 DIS ballot initiated: 12 weeks
May 28, 2026

Related project

Adopted from prEN ISO/IEC 27555 IDENTICAL

Adopted from ISO/IEC DIS 27555 IDENTICAL

Preview

To view the full content, you need to register or to log in to your account by clicking on the "Log in" button