Frameworks / ISO family / ISO/IEC 27018
Long-form · in draft
ISO 27018 · ISO family

ISO/IEC 27018

PII-in-public-cloud controls extending ISO 27001. The privacy overlay enterprise procurement asks for alongside SOC 2 + ISO 27001.

FamilyISO family
EngagementSenior practitioners only
StatusActive practice

The senior view

A deep page on ISO/IEC 27018 is in active drafting.

Nexurion practices ISO/IEC 27018 as part of a connected stack: not as an isolated checklist. Every framework we treat as a real engagement deserves a real page, and the long-form treatment for this one is being written by the same senior practitioner who runs the work.

If you have an active need on ISO/IEC 27018: a buyer asking for it, an auditor scoped, an internal program to stand up: we are ready to start the conversation today, regardless of where this page is in the publishing queue.

Book a senior call

Adjacent practices we run today

SOC 2

SOC 2 Type 1 / 2

Trust Services Criteria, end-to-end audit run.

ISO 27001 : 2022

ISO/IEC 27001

An ISMS with the muscle to survive surveillance.

CMMC L1 / L2

CMMC Level 1 / 2

CCPs on staff. C3PAO-ready packages.

ISO 42001

ISO 42001

AI management systems, EU AI Act bridge.