DS150: Privacy Information Management System (PIMS) Lead Auditor ISO/IEC 27701

Training: Security - Certification

Participants learn effective auditing in the privacy information management system according to ISO/IEC 27701. The course covers the evaluation of measures for protecting personal data and the application of the Standard Data Protection Model (SDM), BS 10012, and ISO/IEC 27701. It provides practical knowledge for conducting and assessing audits in the field of privacy information management systems.

Presence training Presence training

Start: 2025-11-11 | 09:00 am

End: 2025-11-13 | 05:00 pm

Location: TBD

Price: 2.950,00 € plus VAT.

Hybrid training Hybrid training

Start: 2026-03-23 | 10:00 am

End: 2026-03-27 | 03:00 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Hybrid training Hybrid training

Start: 2026-11-16 | 10:00 am

End: 2026-11-20 | 03:00 pm

Location: Nürnberg

Price: 2.950,00 € plus VAT.

Request prefered appointment period:

* All fields marked with an asterisk are mandatory fields.

Agenda:

  • The course is conducted in german, with some english materials (standards) and a german examination.

  • The course consists of a combination of lectures, group work, and role-playing and includes the following topics:

    • ISO 270XX series

    • ISO 29100

    • Standard data protection model from an auditor's perspective

    • Personal information management system according to BS 10012:2017 + A1:2018

    • Privacy information management system according to ISO/IEC 27701:2019

    • Evaluation of data protection management systems against the three mentioned approaches

    • Fundamentals of audit planning and execution

    • Methods for auditing

    • Leading an audit team

    • Interview strategies

    • On the last day, there is an approximately 1.5-hour examination consisting of both multiple-choice questions and personal explanations.

Objectives:

Effective auditing determines the success of management systems for data protection. This makes auditing a challenge that combines complex issues with a high level of responsibility. The five-day intensive course prepares participants for the qualification "Data Protection Management System Lead Auditor according to ISO/IEC 27701" and trains them in conducting audits for a certification body.

Target audience:

The course is aimed at those who
- want to audit and assess a formal Data Protection Management System (DSMS or PIMS)
- want to expand their knowledge and skills as an auditor
- want to support the implementation of privacy information management systems as a consultant
- are professionally active in the field of IT and quality management

Prerequisites:

Knowledge in the field of data protection, e.g., necessities, responsibilities, management commitment, risk assessment, GDPR, and management system processes (PDCA cycle). The participant should have initial audit experience and have attended a management system implementation course (ideally ISO/IEC 27701) or possess equivalent prior knowledge. The participant must bring adequate standard knowledge (requirements from ISO 27701/2, terminology & definitions ISO 27000). Furthermore, we assume that you have data protection knowledge, as this course does not explicitly cover the requirements of individual laws (such as GDPR).

Description:

Participants in the course "Privacy Management System Lead Auditor (DSMS/PIMS) according to ISO/IEC 27701" learn effective auditing. As an auditor, you are able to audit and evaluate the measures for the protection of personal data within the framework of a management system. In the course, we use the Standard Data Protection Model (SDM), BS 10012 (Personal Information Management System), and ISO/IEC 27701 (Privacy Information Management System) as the basis for audit situations.

Some materials are in English, course language is consistently German. Exam duration: 1.5 hours.
check-icon

Guaranteed implementation:

from 3 Attendees

Booking information

Price:

2.950,00 € plus VAT.

(including lunch & drinks)

Exam (Optional):

100,00 € plus VAT.

Authorized training partner

NetApp Partner Authorized Learning
Commvault Training Partner
CQI | IRCA Approved Training Partner
Veeam Authorized Education Center
Acronis Authorized Training Center
AWS Partner Select Tier Training
ISACA Accredited Partner
iSAQB
CompTIA Authorized Partner
EC-Council Accredited Training Center

Memberships

Allianz für Cyber-Sicherheit
TeleTrust Pioneers in IT security
Bundesverband der IT-Sachverständigen und Gutachter e.V.
Bundesverband mittelständische Wirtschaft (BVMW)
Allianz für Sicherheit in der Wirtschaft
NIK - Netzwerk der Digitalwirtschaft
BVSW
Bayern Innovativ
KH-iT
CAST
IHK Nürnberg für Mittelfranken
eato e.V.
Sicherheitsnetzwerk München e.V.