ISO/IEC 29101:2013 defines a privacy architecture framework that
- specifies concerns for information and communication technology (ICT) systems that process personally identifiable information (PII);
- lists components for the implementation of such systems; and
- provides architectural views contextualizing these components.
ISO/IEC 29101:2013 is applicable to entities involved in specifying, procuring, architecting, designing, testing, maintaining, administering and operating ICT systems that process PII. It focuses primarily on ICT systems that are designed to interact with PII principals.