BS10012 was published by the British Standards Institution and came into effect on March 31, 2017, replacing the BS10012 standard published in 2009. BS10012:2017 specifies the requirements for a Personal Information Management System (PIMS), which has been updated and revised to be aligned the GDPR.
BS10012 aims to provide organisations with a compliance framework and good practices for privacy protection, guiding businesses to establish and maintain a personal information management system (PIMS) as part of its overall information governance infrastructure to strike a reasonable balance between the use and protection of personal information. BS10012 is not just a standard requirement for ICT industry, but more about regulating the practice of personal information protection from a management level, enabling internal or external assessors to effectively assess an organization’s compliance level and security capability. The BS10012 standard is designed to ensure that organizations have adequate and appropriate controls to protect personal information and enhance customer confidence in the organization's management of personal information.
Obtaining the BS10012 certification reflects that Tencent Cloud's planning, establishment, implementation, maintenance and continuous improvement of privacy information management system satisfy the requirements of international standards and industry good practices, which enables customers to better comply with GDPR and privacy protection requirements of ICO (Information Commissioner’s Office).