ISO/IEC 27701 Toolkit Version 2 List of Documents
AREA
DOC REF
DOCUMENT
00. Implementation Resources
PIMS-DOC-00-1 PIMS-DOC-00-2 PIMS-DOC-00-3 PIMS-DOC-00-4 PIMS-FORM-00-1 PIMS-FORM-00-2 PIMS-FORM-00-3 PIMS-FORM-00-4 PIMS-FORM-00-5 None None None None
ISO27701 Project Initiation Document ISO27701 Project Plan (Excel) Privacy Introduction Presentation GDPR Preparation Project Plan ISO27701 Gap Assessment Tool ISO27701 Progress Report Certification Readiness Checklist Assessment Evidence GDPR Compliance Checklist CERTIKIT ISO27701 Implementation Guide ATTENTION READ ME FIRST ISO27701 Toolkit CERTIKIT ISO27701 Toolkit Index CERTIKIT - Standard Licence Terms
04. Context of the Organization
PIMS-DOC-04-1 PIMS-DOC-04-2
Privacy Context, Requirements and Scope Applicable Privacy Legislation
05. Leadership
PIMS-DOC-05-1 PIMS-DOC-05-2 PIMS-DOC-05-3 PIMS-DOC-05-4 PIMS-DOC-05-5 PIMS-FORM-05-1
PIMS Manual Privacy Roles Responsibilities and Authorities Executive Support Letter Privacy Policy GDPR Compliance Statement Meeting Minutes
06. Planning
PIMS-DOC-06-1 PIMS-DOC-06-2 PIMS-DOC-06-3 PIMS-DOC-06-4 PIMS-DOC-06-5 PIMS-DOC-06-6 PIMS-FORM-06-1 PIMS-FORM-06-2 PIMS-FORM-06-3 PIMS-FORM-06-4 PIMS-FORM-06-5 PIMS-FORM-06-6 PIMS-FORM-06-7 None None None None None
Privacy Objectives and Plan PIMS Risk and Opportunity Assessment Process Privacy Risk Assessment and Treatment Process Privacy Risk Assessment Report Privacy Risk Treatment Plan PIMS Change Process Privacy Objectives and Planning Tool PIMS Risk and Opportunity Assessment Tool PII Asset Inventory Event-Based Privacy Risk Tool Asset-Based Privacy Risk Tool ISO27701 Statement of Applicability PIMS Change Log EXAMPLE Privacy Objectives and Planning Tool EXAMPLE PIMS Risk and Opportunity Assessment Tool EXAMPLE PII Asset Inventory EXAMPLE Event-Based Privacy Risk Tool EXAMPLE Asset-Based Privacy Risk Tool
07. Support
PIMS-DOC-07-1 PIMS-DOC-07-2 PIMS-DOC-07-3 PIMS-DOC-07-4 PIMS-DOC-07-5 PIMS-DOC-07-6 PIMS-FORM-07-1 None None None None None
Privacy Competence Development Procedure Privacy Competence Development Report Privacy Awareness Presentation PIMS Communication Programme Procedure for the Control of Documented Information PIMS Documentation Log Competence Development Questionnaire EXAMPLE Competence Development Questionnaire EU GDPR Awareness Poster (for data subjects) EU GDPR Awareness Poster (for employees) UK Data Protection Awareness Poster (for data subjects) UK Data Protection Awareness Poster (for employees)
08. Operation
PIMS-DOC-08-1
PIMS Process Interaction Overview
09. Performance evaluation
PIMS-DOC-09-1 PIMS-DOC-09-2 PIMS-DOC-09-3 PIMS-DOC-09-4 PIMS-DOC-09-5 PIMS-FORM-09-1 PIMS-FORM-09-2 PIMS-FORM-09-3 PIMS-FORM-09-4 None
Process for Monitoring, Measurement, Analysis and Evaluation Procedure for Internal Audits Internal Audit Plan Internal Audit Report Procedure for Management Reviews Internal Audit Schedule Internal Audit Checklist Internal Audit Nonconformity Form Management Review Meeting Agenda EXAMPLE Internal Audit Schedule
10. Improvement
PIMS-DOC-10-1 PIMS-FORM-10-1 PIMS-FORM-10-2 None
Procedure for the Mgt of Nonconformity Nonconformity and Corrective Action Log PIMS Regular Activity Schedule EXAMPLE Nonconformity and Corrective Action Log
20/01/2026
Page 1 of 3
[Insert classification]