Changes in the Title of ISO 27002:2022 Standard:

​It was Information  technology – Security techniques – Code of practice for information security controls  in the previous standard.​

​Whereas the new standard addresses information security, cybersecurity and privacy protection.​

This indicates that the standard has been brought up to date with current information-based processes and practises, taking into account the growth of cloud-based information processing. ​

​The change in the title also addresses how the standard takes privacy protection seriously. In today’s world, privacy and security go hand in hand. The standard emphasises that the organization should identify and meet the requirements regarding the preservation of privacy and protection of Personally Identifiable Information according to applicable laws and regulations and contractual requirements.​