Video file hosted on YouTube
Established in 1901, BSI is a world-leading national standards body that helps its clients operate in a more safe, secure and sustainable way. Incorporated by Royal Charter, we’re truly independent, impartial, and home to the ultimate mark of trust, the Kitemark.
Our purpose is to inspire trust for a more resilient world. Our solutions and services improve performance and support the United Nations Sustainable Development Goals. At BSI, our mission is to build digital trust. This is underpinned by our role as the national standards body and through our prestigious Royal Charter.
For more than a century, BSI has led the way in standards and best practices, and we have developed standards and solutions focused on building the resilience of organizations through operational, supply chain and information resilience, through the experience and knowledge of our people.
We work with thousands of organizations, from the world’s largest and most successful brands to local small businesses in 193 countries, at more than 128,000 sites. Find out how you too can benefit by partnering with BSI.
Ongoing efforts to support data protection and privacy by design
BSI, through its role as the UK national standards body and as a leading organization within ISO has been at the center of convening new data protection and information security practices development by creating specific standards for Information Security such as ISO/IEC 27001 from its origin as a British Standard BS 7799, BS 10012 for Personal Information Management, ISO 20000 with its antecessor BS 15000 for IT Service Management, and Business Continuity ISO 22301 based on BS 25999.
BSI has been involved in and contributes to the development of international standards such as ISO 27701 for Privacy Management, ISO 27017 related to Information Security for Cloud Services and ISO 27018 for protection of personally identifiable information in public clouds, all of which have impact on the ever-changing privacy landscape. Additionally, BSI has developed solutions to support organizations to continually assess and comply with the evolving regulatory landscape focused on Cybersecurity, Information management and Privacy, Security awareness and training and Compliance to requirements.
BSI’s solutions include assurance based on certification to Best Practice such as ISO and international standards mentioned above, as other best practice frameworks. We have developed training and personal certification programs to enhance people’s potential and skills in information protection issues and also partner with the world’s leading forum on privacy, International Association of Privacy Professionals (IAPP) to deliver fully accredited professional training.
BSI offering includes consulting services covering cybersecurity and information resilience including data protection and privacy by design. Our approach on digital trust, ensures that organizations can place trust in the benefits sought through digital investments and the establishment of a dedicated Data Governance practice supporting clients globally on all aspects of privacy and data management.
Our Digital trust approach is made up of four domains:
- Cybersecurity and privacy
- IT Governance and risk
- Data stewardship and AI ethics
- Digital supply chain
In addition to these core services, many new and enhanced services directed at overcoming the risks associated with the deployment into the business of emerging technologies such as artificial intelligence, machine learning, 5G, blockchain and industrial security are also offered by BSI. This includes but is not limited to Operational Technology (OT) and IoT security, penetration testing technology arenas such as infrastructure, network, application, attack simulation and red teaming exercises.
Vision on the Future of Privacy
Privacy has emerged as a significant consumer and societal issue that many organizations are turning their attention to address and leverage. Globally changing perspectives on privacy now see organizations view privacy as a core business enabler and not the historical compliance burden or overhead. Changing opinions mean the compliance headache or bureaucratic check-the-box exercises are increasingly being turned upside down to reflect market demand for privacy protecting products and services.
Failure to deliver upon privacy by design can have dramatic impacts on business revenues and brand reputation and therefore further focus the importance and relevance of the topic as a true Boardroom challenge. The future of privacy will therefore see boards put privacy at the core of their strategies, culture and values in order to create meaningful competitive advantages and distinguish their businesses from their competition. In turn, this will lead to ethics, data governance and trust becoming core business and strategic competencies building on the strong foundations of privacy and data protection.
Building and sustaining consumer trust is difficult to achieve, and easy to lose. Starting with privacy to build digital trust and provide assurances to your customers, staff and wider stakeholders is not just a reaction to market trends. Fundamentally it is the right thing to do.