ISO 27018

ISO/IEC 27018:2019 is a code of practice for protecting personally identifiable information (PII) in public cloud services where the provider acts as a PII processor. It extends ISO 27001 with cloud-PII-specific controls drawn from ISO 29100 privacy principles.