Framework hub
ISO 27701
ISO/IEC
Privacy extension to ISO 27001 for establishing and improving a privacy information management system (PIMS).
HLD Group maintains policies and controls mapped to this framework as part of our security and compliance programme. This hub describes programme alignment — not a third-party certification or attestation unless separately agreed in your contract.
Programme focus areas
- PIMS controls
- PII processor/controller roles
Policies meeting this framework
The following published policies and programme documents are mapped to ISO 27701. Status: published and under periodic review.
- Privacy PolicyPublished
How personal data is collected, used, stored, and shared.
v2.0 · review every 365 days
- Data classification policyPublished
Classification levels and handling requirements for information assets.
v1.3 · review every 365 days
- Vendor & third-party risk policyPublished
Assessment and ongoing management of suppliers and subprocessors.
v1.4 · review every 365 days
- Risk management policyPublished
Identifying, assessing, and treating organizational risks.
v1.5 · review every 365 days
Assurance note
Programme alignment means HLD maintains controls, policies, and monitoring mapped to ISO 27701 requirements appropriate to our services and risk profile. It does not by itself constitute certification, authorization, or a SOC/ISO audit report. Customers requiring formal attestations should contact [email protected].