Overview of the PIMS conformity assessment scheme

The PIMS Conformity Assessment Scheme is an internationally harmonized third party conformity assessment scheme for Privacy Information Management Systems (PIMS). Under this scheme, accredited certification bodies assess and certify whether organizations have established, implemented, and continuously maintained a management system that appropriately manages and protects Personally Identifiable Information (PII) in the context of PII processing, in accordance with ISO/IEC 27701:2025. Certification issued by accredited certification bodies provides added value by ensuring that assessments are conducted in accordance with the international standard for certification bodies

Certification criteria in the PIMS conformity scheme are ISO/IEC 27701:2025, used by independent, third‑party certification bodies to audit the conformity of organizations seeking certification under the Scheme.

The PIMS conformity assessment scheme has a comprehensive structure composed of "certification bodies" that audit and certify an applicant organization's PIMS based on ISO/IEC 27701:2025, "persons certification bodies" that certify and register PIMS auditors, and the "accreditation body" that assesses the competence of those bodies in implementing such tasks.

Note: ISMS-AC is an accreditation body for certification bodies and does not conduct certification of organizations under the PIMS Conformity Assessment Scheme.