< Previous standard      ^ Up a level ^      Next standard >

ISO/IEC TS 27564 — Privacy — Guidance on the use of models for engineering [DRAFT]

Abstract

“This document provides guidance on how to use modelling in privacy engineering.”
(!)

[Source: ISO/IEC JTC 1/SC 27 SD11 July 2024]

Introduction

Modelling and other systems engineering approaches are useful when designing complex systems, such as IT systems plus their associated operating environments and processes. This standard will focus on using modelling and engineering to design suitable privacy arrangements into complex systems.

Scope of the standard

Guidance on applying the Model-Based Systems and Software Engineering approach (as per ISO/IEC/IEEE 24641:2023 - Systems and Software engineering - Methods and tools for model-based systems and software engineering) to design appropriate privacy controls in to complex systems using conceptual models.

Content of the standard

[TBA]

Status

Work started in 2021.

The Preliminary Work Item study generated a specification and draft Technical Specification, building on the MBSSE standard published in 2023.

 A New Project to develop the Technical Specification was proposed and agreed by SC 27 in 2024.

Personal comments

The standard will explain the use of standards such as ISO/IEC/IEEE 24641, ISO/IEC 27555 (models for deletion of personal information), ‘27556 (models for managing privacy preferences), ‘27559 (models for de-identification) and ‘27561 (POMME), for privacy engineering.

< Previous standard      ^ Up a level ^      Next standard >