Personal Information De-identification Process Management System (PIDIPMS)

PIDIPMS is a management framework based on the national standard CNS 29191, designed to plan, execute, monitor, and continually improve the personal information de-identification process. It ensures that when an organization conducts applications like big data analysis, the risk of personal data leakage is effectively reduced, and the processed data meets the requirement of being 'unable to identify a specific individual' as stipulated by the Personal Data Protection Act, balancing data protection and data innovation.

Under Taiwan's Personal Data Protection Act, companies can face fines of up to NT$15 million and potential class-action lawsuits for personal data breaches. Implementing PIDIPMS not only effectively mitigates these legal and financial risks but also serves as a commitment to data security for customers and partners. It helps maintain corporate reputation and meet the stringent data governance requirements of supply chains, such as those in the semiconductor, automotive, and financial industries, avoiding business risks arising from improper data handling.

PIDIPMS (based on CNS 29191) is closely related to the Personal Information Management System ISO/IEC 27701 (PIMS), acting as a detailed extension of PIMS for de-identification techniques. It also aligns with the 'Data protection by design and by default' principle (Article 25) of the EU's General Data Protection Regulation (GDPR) and its requirements for processing anonymised data, making it a concrete practice for implementing international privacy frameworks.

Winners Consulting is a pioneer in Taiwan, integrating Enterprise Risk Management (ERM), industrial engineering, and technology law. Led by a founder with a background in preventive law, our team combines tech lawyers, ISO lead auditors, and data scientists. We help companies genuinely integrate PIDIPMS with existing ISO systems, corporate governance, and internal controls, avoiding redundant structures. We don't just help you get a certificate; we ensure the system is effectively implemented, with a proven track record in high-tech industries like semiconductors.