The ISO/IEC 27701:2025 has just been released, and I’m excited to share its key updates. The new ISO 27701 is now a standalone standard, meaning it no longer requires ISO/IEC 27001 as a foundation. In practice, this move democratizes privacy best practices, organizations of any size can now implement a PIMS without first having an ISMS in place (though, in reality, having one still makes perfect sense).

Another major change is the inclusion of clauses 4 to 10 as mandatory requirements, aligning the standard with the ISO management system structure. In practice, all management elements, from context and leadership to evaluation and continuous improvement, are now formal requirements, reinforcing the emphasis on leadership, accountability, and privacy governance. Top management now plays an active role, defining the privacy policy, setting clear responsibilities, and shaping the organization’s privacy culture.

The privacy controls have been updated and reorganized, with several merged, removed, or newly added to address emerging risks such as artificial intelligence, cloud computing, and international data transfers. This ensures that the PIMS evolves in step with technology and the global flow of personal data.

This update represents more than a technical adjustment, it reflects a global mindset shift. Privacy is no longer a cost; it is a strategic investment. The strengthened structure of ISO 27701:2025 signals market maturity. Data protection can no longer be treated as a formality; it is now a core component of value creation, customer trust, and innovation.

Organizations should expect higher standards and new opportunities with ISO/IEC 27701:2025. On one hand, it brings stronger demands for engaged leadership and privacy integrated into processes; on the other, those who adopt it gain a strategic edge, privacy governance that simplifies compliance, mitigates risks, and sets the company apart.

I believe this release paves the way for a future where data management becomes a true competitive advantage. We’re about to see that evolution in motion.