ISO 27018
It is intended to bring Personal Identifiable Information (PII) control through specific requirements. Organizations that meet the requirements are certified by an accredited agency. By using a structured approach to defining and meeting the security requirements, and a formal approach to Privacy, organizations are able to minimize impacts to their PII, and give confidence to interested parties that Privacy requirements are in place and being met.
