ISO/IEC NP 31700-3

Consumer protection — Privacy by design for consumer goods and services — Part 3: Audits of privacy by design for consumer products and services

Apstrakt

This document specifies guidance to audit compliance with ISO 31700-1:2023 (Consumer protection – Privacy by design for consumer goods and services - Part 1: High-level requirements).

The document:
(1) covers process and management aspects related to the product and associated data lifecycle,
(2) uses a questionnaire profile approach to enable audit.

This document allows for the inclusion of requirements to supplement the high-level requirements of ISO 31700-1.

In addition to the guidance contained in ISO 19011, this document further provides guidance on managing a privacy by design for consumer product audit programme based on ISO 31700-1, on conducting audits and on the competence of auditors,.

This document is applicable to those needing to understand or conduct internal or external audits or, to manage a privacy by design consumer product audit programme.

Note: A product includes both goods and services.