ISO/IEC 27701 Lead Implementer
Build the skills to implement a Privacy Information Management System (PIMS) compliant with ISO/IEC 27701 — the data protection extension of ISO 27001, with strong synergy with the GDPR.
Who is this course for?
- DPOs and data protection managers who want a certifiable management framework
- Consultants already working with ISO 27001 who want to add the data protection dimension
- Compliance professionals who manage the GDPR in their organisations
- Those who want to demonstrate formal mastery of data protection management
What you'll gain
- The PECB Certified ISO/IEC 27701 Lead Implementer credential, recognised worldwide
- The ability to implement a PIMS on an existing ISMS
- Command of the data protection controls and their relationship with the GDPR
- A credential that combines perfectly with ISO 27001 and with the DPO role
Course programme
Day 1 · Introduction to the PIMS and ISO/IEC 27701
- Data protection concepts; relationship between ISO 27701, ISO 27001 and the GDPR
- Roles of data controller and data processor
- Context of the organisation and scope of the PIMS
Day 2 · Planning the PIMS
- Leadership, privacy policy and data protection risk management
- Impact assessment (DPIA) and applicable controls
Day 3 · Implementing data protection controls
- Controls for data controllers and processors
- Managing data subjects' rights and transfers
Day 4 · Monitoring and improvement
- Measurement, internal audit and management review
- Nonconformities and continual improvement of the PIMS
Day 5 · Certification exam
- Review and mock exam
- Official “PECB Certified ISO/IEC 27701 Lead Implementer” exam
Exam, credits & certification
Once you pass the exam, you can apply for the “PECB Certified ISO/IEC 27701 Lead Implementer” credential. The exam includes 2 attempts: the first one plus a free retake, usable within the following 12 months. Passing on the first try is no longer a pressure. The CPD credits correspond to the course level according to PECB. The exam duration is indicative; ask me for the exact details when you enrol.
Your trainer

Ricardo Coronel Lemus
More than 20 years in cybersecurity and compliance, today a vCISO and GRC consultant with real clients in France, Spain and Mexico. I don't approach standards theoretically: I apply them day to day with real clients — that's what I bring to my coaching and exam preparation.
Frequently asked questions
Do I need any prerequisites?
In which language is the exam taken?
What is the difference between Self-Study and Self-Study + Coaching?
What if I don't pass the exam?
What is the link with the GDPR and with ISO 27001?
Ready to get certified in ISO 27701?
Choose your option above and enrol online. Have a question or need advice? Write to me or book a call.