CompTIA Security+ (SY0-601) — Question 475

Which of the following ISO standards is certified for privacy?

Answer options

• A. ISO 9001
• B. ISO 27002
• C. ISO 27701
• D. ISO 31000

Correct answer: C

Explanation

ISO 27701 is specifically designed for privacy information management and provides a framework for organizations to manage personal data. The other options, such as ISO 9001 and ISO 27002, focus on quality management and information security management respectively, while ISO 31000 addresses risk management, making them irrelevant to privacy certification.