ISO 27701 is an extension to ISO 27001 that provides specific requirements for establishing, implementing, maintaining, and continually improving a Privacy Information Management System (PIMS).

• Privacy by Design: Ensures privacy considerations are built into every aspect of HealthTag.
• GDPR Alignment: Provides a framework that aligns with GDPR requirements for data controllers and processors.
• Health Data Protection: Specific guidance for handling sensitive health information securely.
• Trust & Transparency: Demonstrates systematic approach to privacy management and user trust.

• Privacy impact assessments for all data processing activities
• Clear data processing records and lawful basis documentation
• Privacy-aware system design and development processes
• Regular privacy training for all team members
• Privacy incident response and breach notification procedures