ISO 27001 - Information Security Management Systems ISO 27002 - Information technology — Security techniques — Code of practice for security controls ISO 27032 - Security Techniques -- Guidelines for Cybersecurity ISO 27017 - Information Security for Cloud Services ISO 27018 - Information Security Protection of Personally identifiable information (PII) in public clouds ISO 28000 - Specification for Security Management Systems for the Supply Chain EU GDPR EU - General Data Protection Regulation PCI-DSS - Payment Card Industry Data Security Standard HIPAA - Health Insurance Portability and Accountability Act US SSAE16 - SOC-1 Type II, SOC-2 Type II