ISO/IEC 27701 - Certified Lead Auditor

Certification Overview

ISO/IEC 27701 - Certified Lead Auditor

Exam Code: ISO-27701-CLA

The European Union’s General Data Protection Regulation (GDPR), has ushered in a new era of privacy regulatory and compliance globally. More privacy regulations, many modeled after the GDPR, have been enacted in different jurisdictions (be that market/industry, or physical location). As a result, organizations must implement policies and procedures to assure compliance with the growing list of privacy regulations. In addition, we are collectively in the midst of rapid digital transformation where data collection and processing are increasing dramatically. The simultaneous growth in data volume and regulatory requirements pertaining to that data makes compliance increasingly complex for organizations of all types.

ISO/IEC 27701 Lead Auditor. The ISO/IEC 27701 Lead Auditor training course enables you to develop the necessary skills to perform a Privacy Information Management System (PIMS) audit by applying widely recognized audit principles, procedures and techniques.

e-Competence Framework (e-CF)

The mapping of this certificate against the e-Competence Framework. To know more on e-Competence Framework (e-CF) visit, ECF

Exam Information

The exam comprises of 50 Multiple Choice Questions out of which the candidate needs to score 70% (28 out of 40 correct) to pass the exam.

Exams are online and proctored based, using a webcam and a reliable internet connection exams can be taken anywhere and anytime.

The total duration of the exam is 1 hour (60 Minutes).

No external sources of information may be accessed during the exam held via ProctorU. Further details of the materials permitted are provided:

  • Identification Proof.
  • If a Candidate does not pass the exam in the second (2nd) attempt, the candidate must wait for a period of at least fourteen (14) calendar days from the date of their attempt to retake the exam for third (3rd) time or any subsequent time.
  • The exam can be taken any number of times.

The ISO/IEC 27701 - Certified Lead Auditor Certificate is valid for life.

Displaying your certificate

  • Remember, when labelling a product or system as certified to an ISO standard:
  • Don't say: "ISO certified" or "ISO certification"
  • DO say: "ISO 9001:2008 certified" or "ISO 9001:2008 certification" (for example).



The ISO/IEC 27701 - Certified Lead Auditor Certification has no prerequisites.

Course Outline

Module Information - 1

  • Recognize the key operational requirements of ISO/IEC 27701:2019 and how to go about assessing them
  • Identify what and who should be audited and why
  • Recall where to look for evidence when conducting audits
  • Determine how to take a pragmatic business-focused approach to auditing your organization against requirements which can be open to interpretation.

Module Information - 2

  • Develop internal auditing skills and boost information security/ privacy management knowledge
  • Perform a gap assessment of the existing ISMS to the requirements of ISO/IEC 27701 and produce an action plan on how to address those gaps.
  • Conduct a data mapping of the PII collected by the organization to understand the scope of PII collected and how it is used and shared with processors.

Module Information - 3

  • Determine the organization’s role as a controller and/or processor based on internal or external factors that are relevant to its context, such as applicable privacy legislation, regulations, judicial decisions, or contractual requirements (among others).
  • Review and update privacy policies to ensure they contain the required information.
  • Develop policies and procedures applicable to the organization’s role.
  • Begin the planning and implementation of the privacy by design and default principles.

Target Audience

The Certification is applicable to representatives from any size or type of organization who are currently involved in planning, implementing and maintaining a PIMS to the ISO/IEC 27701:2019 standard.

Anyone involved in planning, implementing, maintaining or supervising a Personal Information Management system (PIMS) based on ISO/IEC 27701 or EUGDPR. The course is equally relevant to PII controllers and PII processors.

  • Compliance Officers
  • Data Protection Managers
  • Privacy Managers
  • Auditors

Registration Process for E-Course and Exam


  • Validity: 180 Days
  • Price: 210 USD
  • Please Read Carefully:

    1) Please Purchase the Third Voucher from our E-Voucher Store to Schedule the exam via ProctorU.

    2) One Voucher can be used by one person, one time, for one exam discount/fee only.

Visit E-Voucher Store

Exam Registration

  • To Register for an Exam
Click Here