+49 (911) 80 10 30

Give us a call or have us call you back!

Simply leave a message with your callback appointment

Your Name *

Your phone number *

Callback date *

Callback time *

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.

* All fields marked with an asterisk are mandatory fields.
Send a message

Your Name *

Your email *

Your phone number

Your request *

In order to process your request, it is necessary to process the data you provide. This means that by submitting the contact form, you consent to your data being processed (see Privacy Policy). You can object to the processing of your data at any time.*

* All fields marked with an asterisk are mandatory fields.
Social Media

Share page

DS150: Privacy Information Management System (PIMS) Lead Auditor ISO/IEC 27701

Training: Security - Certification

Participants learn effective auditing in the privacy information management system according to ISO/IEC 27701. The course covers the evaluation of measures for protecting personal data and the application of the Standard Data Protection Model (SDM), BS 10012, and ISO/IEC 27701. It provides practical knowledge for conducting and assessing audits in the field of privacy information management systems.

Appointment selection

Appointments in German language (2)


Hybrid training	2026-03-23 \| 10:00 am	2026-03-27 \| 03:00 pm	Nürnberg
Hybrid training	2026-11-16 \| 10:00 am	2026-11-20 \| 03:00 pm	Nürnberg

Possible course languages: German

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Hybrid training

Start: 2026-03-23 | 10:00 am

End: 2026-03-27 | 03:00 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Hybrid training

Start: 2026-11-16 | 10:00 am

End: 2026-11-20 | 03:00 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Request prefered appointment period:

Your Name *

Your email *

Your phone number

Preferred period from *

Preferred period to *

Number of participants *

Your message

* All fields marked with an asterisk are mandatory fields.

Agenda:

The course is conducted in german, with some english materials (standards) and a german examination.
The course consists of a combination of lectures, group work, and role-playing and includes the following topics:
- ISO 270XX series
- ISO 29100
- Standard data protection model from an auditor's perspective
- Personal information management system according to BS 10012:2017 + A1:2018
- Privacy information management system according to ISO/IEC 27701:2019
- Evaluation of data protection management systems against the three mentioned approaches
- Fundamentals of audit planning and execution
- Methods for auditing
- Leading an audit team
- Interview strategies
- On the last day, there is an approximately 1.5-hour examination consisting of both multiple-choice questions and personal explanations.

Objectives:

Effective auditing determines the success of management systems for data protection. This makes auditing a challenge that combines complex issues with a high level of responsibility. The five-day intensive course prepares participants for the qualification "Data Protection Management System Lead Auditor according to ISO/IEC 27701" and trains them in conducting audits for a certification body.

Target audience:

The course is aimed at those who
- want to audit and assess a formal Data Protection Management System (DSMS or PIMS)
- want to expand their knowledge and skills as an auditor
- want to support the implementation of privacy information management systems as a consultant
- are professionally active in the field of IT and quality management

Prerequisites:

Knowledge in the field of data protection, e.g., necessities, responsibilities, management commitment, risk assessment, GDPR, and management system processes (PDCA cycle). The participant should have initial audit experience and have attended a management system implementation course (ideally ISO/IEC 27701) or possess equivalent prior knowledge. The participant must bring adequate standard knowledge (requirements from ISO 27701/2, terminology & definitions ISO 27000). Furthermore, we assume that you have data protection knowledge, as this course does not explicitly cover the requirements of individual laws (such as GDPR).

Description:

Participants in the course "Privacy Management System Lead Auditor (DSMS/PIMS) according to ISO/IEC 27701" learn effective auditing. As an auditor, you are able to audit and evaluate the measures for the protection of personal data within the framework of a management system. In the course, we use the Standard Data Protection Model (SDM), BS 10012 (Personal Information Management System), and ISO/IEC 27701 (Privacy Information Management System) as the basis for audit situations.

Some materials are in English, course language is consistently German. Exam duration: 1.5 hours.