Additional ISO Standards 

ISO 27701 is a privacy extension to the international standard ISO/IEC 27001, which provides guidelines for establishing, implementing, maintaining, and continually improving an information security management system (ISMS). ISO 27701 provides a framework for organisations to establish, implement, maintain and continually improve a Privacy Information Management System (PIMS) based on ISO/IEC 27001.

The standard provides a set of requirements and guidelines for managing personal data in line with various privacy regulations, such as the European Union's General Data Protection Regulation (GDPR) and other international privacy laws.

The standard outlines specific controls and processes that organisations should implement to ensure the protection of personal data, such as conducting privacy impact assessments (PIAs), implementing privacy by design principles, and establishing clear policies and procedures for the handling of personal data.

Overall, ISO 27701 provides a comprehensive framework for managing privacy risks and demonstrates an organisation's commitment to protecting personal data.

ISO 20000 is an international standard that provides guidelines for implementing an Information Technology Service Management (ITSM) system within an organisation. The standard outlines best practices for managing IT services, including planning, design, delivery, and improvement of services, and ensuring that they meet the needs of the organisation and its customers.

The standard is based on the ITIL (Information Technology Infrastructure Library) framework, which is a set of best practices for IT service management.

The ISO 20000 standard covers a range of topics, including service delivery processes, service level management, capacity management, availability management, and incident management. It also includes requirements for documenting procedures, monitoring service levels, and measuring customer satisfaction.

By implementing ISO 20000, an organization can demonstrate to its customers and stakeholders that it is committed to providing high-quality IT services that meet their needs and expectations. It can also help to improve the efficiency and effectiveness of IT service delivery, leading to cost savings and improved customer satisfaction.

ISO 22301 is an international standard that provides a framework for Business Continuity Management (BCM). The standard outlines best practices for identifying potential threats to an organisation, assessing the impact of those threats, and developing and implementing a plan to ensure that critical business functions can continue in the event of a disruption.

ISO 22301 provides a structured approach to BCM, helping organisations to identify critical business processes, dependencies, and risks. It provides a set of requirements and guidelines for developing and implementing a Business Continuity Management System (BCMS), which includes policies, procedures, and controls to manage business continuity risks.

The standard covers a range of topics, including business impact analysis, risk assessment, crisis management, and business continuity planning. It also includes requirements for maintaining and testing the BCMS to ensure that it remains effective in the face of changing threats and circumstances.

By implementing ISO 22301, an organisation can demonstrate to its customers, stakeholders, and regulators that it is prepared to manage disruptions and minimize the impact of any incidents. It can also help to improve the resilience and agility of the organisation, reducing the risk of downtime and ensuring continuity of critical business functions.

ISO 13485 is an international standard that outlines requirements for a quality management system (QMS) specifically designed for medical device manufacturers and related service providers. It specifies the requirements for a QMS throughout the entire life cycle of a medical device, from design and development to production, installation, and servicing.

ISO 13485 is based on the general requirements of ISO 9001 but includes additional requirements specific to the medical device industry. The standard covers a range of topics, including design and development, risk management, validation and verification, traceability, and documentation control.

ISO 13485 certification demonstrates that an organisation has established a quality management system that meets the regulatory requirements of the medical device industry. It can also provide a competitive advantage by demonstrating a commitment to quality and safety, improving customer confidence, and enhancing brand reputation.

Compliance with ISO 13485 is a regulatory requirement for medical device manufacturers in many countries, including Europe, Japan, and Canada. In the United States, compliance with the standard is not mandatory, but it is often used as a benchmark for ensuring compliance with the Food and Drug Administration (FDA) requirements.

ISO 22000 is an international standard that outlines requirements for a Food Safety Management System (FSMS). It specifies the requirements for an organisation in the food industry to ensure food safety throughout the entire food supply chain, from farm to table.

ISO 22000 is based on the Hazard Analysis and Critical Control Points (HACCP) principles, which are a systematic approach to identifying and controlling food safety hazards. The standard covers a range of topics, including food safety policy, hazard analysis, implementation of prerequisite programs (PRPs) and operational prerequisite programs (OPRPs), and management system requirements.

ISO 22000 certification demonstrates that an organisation has established an FSMS that meets the regulatory requirements of the food industry. It can also provide a competitive advantage by demonstrating a commitment to food safety, improving customer confidence, and enhancing brand reputation.

Compliance with ISO 22000 is not mandatory, but it is often used as a benchmark for ensuring compliance with food safety regulations in many countries. The standard is widely recognized and accepted globally and can be applied to all organisations involved in the food supply chain, including farmers, food manufacturers, distributors, and retailers.