Topic: Data governance

Trustworthy Data Spaces: A Dialogue Between North and South (WTO Public Forum 2022)

Event description

Date: Thursday, 29th September, 15:45–17:00 CEST

Location: Room D, World Trade Organization (WTO), Geneva

Although data is non-rivalrous, data controllers have the capacity to restrict access to data for a myriad of reasons, such as protecting privacy, intellectual property, or to maintain a competitive edge.

At present, there are insufficient incentives for data to be shared by data controllers, and insufficient obligations for them to fulfil the social value of data.

This session will address data sharing and data flows from national and international perspectives. It aims to establish a bridge between proposals advanced by actors in the Global North and in the Global South, such as Switzerland’s proposal of trustworthy data spaces, Japan’s proposal of data free flows with trust and India’s notion of community data.

Participants will discuss how these different proposals could contribute to promoting a more equal distribution of benefits in the data economy and to shed light on current negotiations on data flows taking place at the WTO.

This event, which is part of the WTO’s Public Forum 2022, is being organised by Diplo, the Swiss Federal Office of Communications (OFCOM), and the Geneva Internet Platform.

Moderator: Marilia Maciel (Head, Digital Commerce and Internet Policy, Diplo)

Panellists:

  • Andrin Eichin (Swiss Federal Office of Communications (OFCOM))
  • Torbjörn Fredriksson (Head, E-commerce and Digital Economy Branch, UN Conference on Trade and Development (UNCTAD))
  • Simon J. Evenett (Professor of International Trade and Economic Development, University of St. Gallen, Switzerland)
  • Parminder Jeet Singh (Executive Director, IT for Change)

For more information about the WTO Public Forum 2022, visit the official page.

[Webinar] Data Interoperability: The benefits for the Land Administration sector

By: United Nations Economic Commission for Europe;

Event description

Event date: 24 June 2022, 10:00–12:00 CEST

The United Nations Economic Commission for Europe (UNECE) is hosting a webinar with experts from land administration and management to explore the opportunities and challenges of increasing data operability in this field. The session will shed light on the FAIR Data Principles (Findable, Accessible, Interoperable, and Reusable), and will feature case studies from the United Kingdom.

For more information, and to register, please visit the official page.

WIPO Symposium on Trade Secrets and Innovation

By: World Intellectual Property Organization;

Event description

Event date: 23–24 May 2022

The WIPO Symposium on Trade Secrets and Innovation provides an exchange platform for ideas and perspectives with regard to the intersection of trade secrets and innovation in both the technological and service sectors. The 2022 symposium will focus on the ‘roles of trade secret systems in supporting innovation and knowledge sharing in a rapidly changing innovation ecosystem’. The discussions will cover the interaction between trade secrets and innovation policies, how to balance legitimate interests in trade secret systems, the international/cross-border environment, the scope of data protection, trade secret management and knowledge sharing, the development and dissemination of medical technologies, and defence against allegations of trade secret misappropriation.

For more information, and to register, please visit the official page.

Inter-Parliamentary Union

Acronym: IPU

Address: Chemin du Pommier 5, Case postale 330 , 1218 Le Grand-Saconnex, Switzerland

Website: https://www.ipu.org

Stakeholder group: International and regional organisations

The IPU is a global organisation of national parliaments. It was founded more than 130 years ago as the first multilateral political organisation in the world, encouraging cooperation and dialogue between all nations. Today, the IPU comprises 178 national member parliaments and 14 regional parliamentary bodies.

It promotes democracy and helps parliaments become stronger, younger, gender-balanced, and more representative. It also defends the human rights of parliamentarians through a dedicated committee made up of members of parliament (MPs) from around the world.

Digital activities

The  IPU’s digital activities have significantly increased over the past few years with the creation of the dedicated IPU Centre for Innovation in Parliament. The Centre researches the impact of digital technologies on parliaments and coordinates a network of parliamentary hubs on innovation in parliaments. It also publishes the landmark World e-Parliament Report and hosts a biennial World e-Parliament Conference.

The IPU holds many of its inter-parliamentary meetings either in a virtual or hybrid format as part of its strategy to bring together as many parliamentarians from around the world as possible while reducing the carbon footprint of international meetings.

Digital policy issues

Capacity development

In line with its objective to build strong and democratic parliaments, the IPU assists parliaments in building their capacity to use information and communications technologies (ICTs) effectively, both in parliamentary proceedings and in communication with citizens. The IPU has also been mandated by its member parliaments to carry out capacity development programmes for parliamentary bodies tasked with overseeing the observance of the right to privacy and individual freedoms in the digital environment.

The IPU also encourages parliaments to make use of ICTs as essential tools in their legislative activities. To this aim, the IPU launched the Centre for Innovation in Parliament in 2018 to provide a platform for parliaments to develop and share good practices in digital transformation strategies, as well as practical methods for capacity building. The IPU holds the World e-Parliament Conference, a biannual forum that addresses, from both policy and technical perspectives, how ICTs can help improve representation, law-making, and oversight. Every two years it publishes the World E-Parliament Report, providing insights into innovation strategies and good practices, based on survey data from around 120–140 national parliaments.

As of August 2020, eight regional and thematic parliamentary hubs were operating under the Centre for Innovation in Parliament, covering IT governance, open data and transparency, Spanish-speaking countries, Eastern Africa, Southern Africa, the Caribbean, and the Pacific. Each hub is co-ordinated by a national parliament and brings together parliaments to work on subjects of common interest, such as remote working methods during COVID-19.

Sustainable development

The IPU works to raise awareness about the sustainable development goals (SDGs) among parliaments, and provides them with a platform to assist them in taking action and sharing experiences and good practices in achieving the goals.

Privacy and data protection

One of the IPU’s objectives is to promote and protect human rights. Its Committee on Democracy and Human Rights is involved in activities aimed at contributing to ensuring privacy in the digital era and the use of social media as effective tools to promote democracy. A 2015 resolution – Democracy in the Digital Era and the Threat to Privacy and Individual Freedoms – calls on parliaments to create adequate mechanisms for the protection of privacy in the online space, and to ensure that legislation in the field of surveillance, privacy, and data protection is based on democratic principles.

Digital tools

Freedom of expression

The IPU’s Committee on Democracy and Human Rights works on promoting the protection of freedom of expression in the digital era and the use of social media as an effective tool to promote democracy. In 2015, the IPU adopted a Resolution on Democracy in the Digital Era and the Threat to Privacy and Individual Freedoms encouraging parliaments to remove all legal limitations on freedom of expression and the flow of information, and urging them to enable the protection of information in cyberspace, so as to safeguard the privacy and individual freedom of citizens.

It offers virtual training sessions for parliamentarians. Its IPU Parline database is an open data platform on national parliaments, which includes data on the age of people in parliament as well as a monthly ranking of women in national parliaments.

Social media channels

Facebook @InterParliamentaryUnion

Instagram @ipu.parliament_official

LinkedIn @Inter-Parliamentary Union

Twitter @IPUparliament

YouTube @Inter-Parliamentary Union (IPU)

Geneva Science-Policy Interface

Acronym: GSPI

Established: 2018

Address: Uni Mail, Bd du Pont-d’Arve 28, 1211 Geneva 4, Switzerland

Website: https://gspi.ch/

Stakeholder group: Academia & think tanks

The GSPI is a neutral and independent platform that aims to foster engagement between the research community and Geneva-based international policy actors around some of the most pressing global challenges (including global health, climate change, and migration). 

It works to foster science-policy ecosystems by brokering collaborations and enhancing capacities across the interface between the science, policy, and implementation communities. This includes an annual call for projects, the Impact Collaboration Programme (ICP), the production of policy briefs, as well as learning opportunities and resources to advance the professionalisation and recognition of the science-policy field of practice in Geneva and beyond.

The GSPI is based at the University of Geneva. It receives support from the Swiss Federal Department of Foreign Affairs (FDFA) and the backing of leading research institutions in Switzerland and Europe.

Digital activities

As part of its activities at the interplay between science, policy, and implementation actors, the GSPI tackles a range of digital issues. With data being a centrepiece of evidence-based policies, many of the GSPI’s activities touch on digitalisation and the use of digital tools in domains such as health, migration, development, and the environment.

Digital policy issues

Artificial intelligence

The project MapMaker, a collaboration between the International Union for Conservation of Nature (IUCN) and the Swiss Federal Institute of Technology in Zürich (ETH Zurich) has enabled the development of an online visualisation tool to inform data-driven decision-making on marine biodiversity conservation at the international level.

Digital standards

Together with the Geneva Health Forum (GHF), the GSPI has established a working group including key humanitarian actors to harness knowledge and best practices around the digitisation of clinical guidelines for management of childhood illness in primary care in low and middle-income countries. In line with the efforts of the WHO, and the principles of donor alignment for digital health, the working group has developed recommendations on how digitalisation can improve the management of childhood illness. In September 2021, the results of this work were shared with experts and the public, providing a platform for discussions on the lessons learned and future trends in the field.

Emerging technologies

In 2018, the GSPI organised policy discussions on the use of drones as part of humanitarian action. The conversation centred on the practical use of drones to deliver humanitarian aid and what can be done by stakeholders such as policymakers, the private sector, and non-governmental organisations (NGOs) to maximise the opportunities and reduce the risks of such technologies.

At the 2019 Digital Day, together with the University of Geneva, the GSPI organised a discussion exploring what experience and know-how Geneva-based organisations could share to empower and protect users in the context of the digital revolution.

With a number of other partners, the GSPI co-organised a discussion at the 2019 WSIS Forum on aerial data produced by drones and satellites in the context of aid and development. The session explored the interplay between international organisations, NGOs, and scientists and how they can work together to help monitor refugee settlements, provide emergency response in case of natural disasters, and scale agriculture programmes.

Data governance

The project REDEHOPE of the University of Geneva and the UN Economic Commission for Europe (UNECE) has led to the development of an online diagnostic tool to help countries identify and visualise issues in their housing data ecology, and access appropriate datasets to formulate more robust, evidence-based housing policies at the country level.

Sustainable development

In 2020–2021, the Basel, Rotterdam and Stockholm Convention (BRS) secretariat benefitted from the support of ETH Zurich to develop an online platform to identify and signal the need for evidence and information to the scientific community in the field of chemical and waste management.

A project from ICP 2021 addressed the hurdles facing policy actors in accessing and making sense of data in migration research. The project partners (the International Organization for Migration (IOM) and the Graduate Institute) developed an interactive digital toolkit for policy officials to support them in leveraging migration research for evidence-based policymaking. The toolkit, based on IOM’s flagship publication, the World Migration Report, was launched in June 2022.

ICP 2021 brought support to the development of interactive analytical tools providing information about all UN sanctions to inform both humanitarian practitioners and sanction policy actors on practical ways to safeguard principled humanitarian action in areas under a sanction regime. This project is a collaboration between the Graduate Institute and the Norwegian Refugee Council (NRC).

ICP 2022 selected a collaboration between ETH Zurich and IOM that seeks to bring more effective policy expertise in the management of migration to address migrants’ needs and increase social cohesion between migrant and local communities. The collaboration will develop a toolbox to be used by IOM and its partners to facilitate the use of the Immigration Policy Lab (IPL) Integration Index, a survey tool for governments, nonprofits, and researchers to measure the integration of immigrants around the world.

Human rights principles

Also in the framework of its ICP, the GSPI has supported a collaboration between the Geneva Academy of International Humanitarian Law and Human Rights and OHCHR’s B-Tech project. Some of the new fast-evolving technologies, such as cloud computing, artificial intelligence (AI), facial recognition technologies, and the internet of things (IoT), can have profoundly disrupting effects on sociopolitical systems and pose significant human rights challenges. This initiative provides authoritative guidance and resources for implementing the UNGPs in the technology space and placing international human rights law (IHRL) at the centre of regulatory and policy frameworks. Aimed at policymakers, the technology sector, and all those working on the regulation of AI, the policy research carried out in this project (see resulting Working Paper, 2021) brings fresh insights into how current initiatives on the regulation of AI technologies could incorporate the protection and respect for human rights. Published by the Geneva Academy, the paper also calls on states to adopt a ‘smart mix’ of mandatory and voluntary measures to support their implementation and how this applies to the AI sector. This GSPI-supported science-policy process will formally feed the development of a ‘UN Guiding Principles check’ tool (working title), which will provide states with a roadmap to assess their regulatory efforts across different policy domains relevant to technology.

Digital tools

Social media channels

LinkedIn @genevaspi

Twitter @GenevaSPI

Ecma International

Acronym: Ecma

Established: 1961

Address: Rhône Street 114, 1204 Geneva, Switzerland

Website: https://www.ecma-international.org/

Stakeholder group: NGOs and associations

Ecma International is an industry association that works on standardisation in information and communication technology (ICT) and consumer electronics.

The association develops global standards and technical reports to facilitate and standardise the use of ICTs and consumer electronics. It also encourages the correct use of standards by influencing the environment in which they are applied.

Its membership includes entities such as Alibaba, Apple, Bloomberg, Google, Hitachi, HP, Huawei, IBM, Intel, Meta, Microsoft, Netflix, and PayPal, as well as prominent universities and research institutes.

Digital activities

Since its creation in 1961, Ecma has published numerous standards and technical reports covering areas such as data presentation and communication; data interchange and archiving; access systems, interconnection, and multimedia; programming languages; and software engineering and interfaces. FORTRAN, one of the oldest programming languages developed by Ecma, was approved in 1965. ECMAScript, with several billion implementations, is one of the most used standards worldwide.

Digital policy issues

Digital standards

A large part of Ecma’s activity is dedicated to defining standards and technical reports for ICTs (hardware, software, communications, media storage, etc.). This work is carried out through technical committees and task groups focusing on issues such as information storage, multimedia coding and communications, programming languages, open XML formats, and product-related environmental attributes. The standards and technical reports developed in committees and groups are subject to an approval vote in the Ecma General Assembly. Once approved by the assembly, some standards are also submitted to other standardisation organisations (such as the International Organization for Standardization (ISO), the International Electrotechnical Commission (IEC), and the European Telecommunications Standards Institute (ETSI)) for their approval and publication through a liaison agreement that Ecma has with those organisations.

Telecommunications infrastructure

Network security

Sustainable development/Digital and environment

Programming languages such as ECMAScript (JavaScript) and C#

Data-related standards

  • Multiple Ecma standards covering issues such as data interchange, data presentation, and data communication
  • Ecma technical reports covering data communication and data interchange.

Technical committees (TCs) and task groups (TGs) covering issues such as access systems and information exchange between systems (TC51), information storage (TC31), product-related environmental attributes (TC38), ECMAScript language (TC39), office open XML formats (TC45) and ECMAScript modules for embedded systems (TC53).

Information storage

Standards developed by Ecma include optical and magnetic storage systems (disks, cartridges, etc.), methods for determining the life expectancy of storage media, and the interchange of information on media by specifying its volume and file structure.

Where other optical storage systems such as compact discs (CDs), digital versatile disks (DVDs), or hard disks only store data on their surface, holographic data storage goes beneath the surface using the entire recording medium.

Holographic storage is a high-capacity storage technology that records binary information into holograms (three dimensions), which can be read by low-power laser beams. In December 2021, the ECMA-420 standard was published. It specifies device interface information and requirements for high-speed image retrieval and collation using holographic optical correlation based on shift-multiplex recording of coaxial holography.

Ecma has several projects in development, which include a standard on a quality discrimination method and an operating method of storage systems for long-term data preservation. This standard will enable data storage systems to be built using optical disks for storing and accumulating important digital information safely and on a permanent basis. There is also a plan to develop a standard defining a holographic data storage system with a capacity of 1,000 Gbytes per disk, which will enable long-term data preservation storage systems to be built, with features such as high capacity, long-term reliability, and lower operational costs.

Future of meetings

Ecma meetings, such as its General Assembly, typically take place as a physical meeting to allow face-to-face discussions and interaction among members, but remote attendance is possible by using videoconferencing and other digital tools for the members that cannot attend in person. Ecma TCs hold either physical, hybrid, or virtual meetings depending on their specific needs.

Ecma meetings are typically held outside of Ecma’s HQ at the invitation of a TC member who hosts the meeting at their own or another facility.

Economy and efficiency are factors in choosing the meeting place and the meeting mode. Digital or a combination of digital and face-to-face meetings are possible options. This is decided by the committee.

Social media channels

LinkedIn @ecma-international

Twitter @EcmaIntl

The United Nations High Commissioner for Refugees

Acronym: UNHCR

Established: 1950

Address: Rue de Montbrillant 94, 1201 Genève, Switzerland

Website: https://www.unhcr.org/

Stakeholder group: International and regional organisations

Established in 1950 after the end of WWII, the United Nations High Commissioner for Refugees is a UN agency mandated to help and protect refugees, internally displaced and stateless people, and to assist in their voluntary repatriation, local integration or resettlement to a third country.

Whereas the majority of its activities take place in the field (given that 90% of its staff is based on the ground) and include, among other things, the provision of protection, shelter, emergency relief, and repatriation, it also works with national political, economic and social actors in order to ensure that refugee policies are enacted and laws are compliant with international frameworks. In addition, the organisation also takes on advocacy activities where it works with governments, non-government actors in order to promote practices and provide assistance to those in need.

As recognition for its work, in 1954, the UNHCR was awarded the Nobel Peace Prize.

Digital activities

The UNHCR’s digital activities centre around its core objective – to aid refugees and displaced persons. The organisation, therefore, has been very active in the area of digital inclusion and digital identity. In this context, the UNHCR, for instance, looks for ways how digital identity can facilitate protection and empowerment of refugees and asylum-seekers. In addition, the Refugee agency has conducted substantial work in the field of privacy and data protection and transition to online learning to ensure the right to education.

Digital policy issues

Digital identities 

To promote the inclusion of refugees, internally displaced persons (IDPs), stateless persons and other vulnerable individuals, the UNHCR focuses a part of its work on digital identity. Within this scope, it published in 2018 its “UNHCR Strategy on Digital Identity and Inclusion”. In this document, the UNHCR defines the challenges faced by individuals, in particular, foreigners, migrants, asylum seekers and refugees who lack their legal identity papers. It highlights the advantages brought about by digitalisation and defines three main objectives for achieving the digital inclusion and digital identity: 1) Empower refugees, stateless and forcibly displaced persons to access, among other things, the job market, education and financial services; 2) strengthen states’ capacity to register and document all individuals living on their respective territories and ensure conformity with international standards of data security and privacy; 3) improve service delivery (e.g. delivery of legal and protection) through the use of the Internet and mobile technologies.

From a practical point of view, the Refugee Agency uses Population Registration and Identity Management Ecosystem (PRIMES) which gathers UNHCR’s digital registration, identity management and case management tools into a single internally connected and interoperable ecosystem. The tool makes use of personal information including biographic and biometric data, to provide necessary assistance, protection and services to protection to refugees and other displaced populations.

Online education 

Online learning plays also features in UNHCR’s work. In a recent publication titled ‘Supporting Continued Access to Education during COVID-19’, the UNHCR underscored its vital role in advocating for and ensuring the inclusion of refugees in national response plans to ensure the continuity of learning. The document sheds light on some of the activities that it has undertaken in light of the health crisis, including, the launch of online learning platforms in Jordan as well as related education programmes in Uganda. 

In the broader context of online education, in its ‘Education 2030: A Strategy for Refugee Inclusion’, the UNHCR highlights the increasingly important role played by digital technologies and proposes the strengthening of policies and practices to promote the development of digital and transferable skills through connected and blended learning 

methods. Keeping within the broader approach, in 2016, the UNHCR, together with Arizona State University, initiated the Connected Learning in Crisis Consortium (CLCC). The objective of the initiative is to promote, coordinate and support the provision of quality higher education in contexts of conflict, crisis and displacement through Connected Learning that thanks to the use of information technology combine face-to-face and online learning. 

To pursue its action in the domain of access to education, the Refugee Agency runs several platforms. To illustrate, its online platform ‘UNHCR Opportunities’ allows refugees, IDPs and other displaced persons to find accredited higher education academic or scholarship programmes that have been verified by UNHCR. The ‘Learn and Connect’ portal enables UNHCR staff and partners to access a comprehensive set of learning activities.

Sustainable development 

The UNHCR is firmly committed to achieving the 2030 Agenda for Sustainable Development. The interplay between digital and development is evident in the Agency’s contributions in the field of digital inclusion. To this end, the UNHCR has published the above-mentioned ‘Strategy on Digital Identity and Inclusion’.

The Agency has also developed Digital Access, Inclusion and Participation programme, to ensure that refugees and other displaced communities have access to digital technology and connectivity, and increasing their participation in Agency’s work. UNHCR’s Innovation Service leads the programme.

In 2018, the UNHCR launched the Global Compact for Refugees, a  framework for more equitable responsibility-sharing, noting that sustainable solutions to refugee situations cannot be realised without international cooperation. Therefore, it sets out four key objectives: to ease the pressures on host countries, enhance refugee self-reliance, expand access to third-country solutions, and support conditions in countries of origin for return in safety and dignity. Moreover, the Agency developed a digital platform for the Global Compact on Refugees, which enables the sharing of experiences and knowledge on the implementation of the Global Compact for Refugees.

The UNHCR has also worked with students and young people to raise awareness on many challenges faced by refugees. For instance, the Agency has launched ‘The MUN Refugee Challenge’ to encourage students worldwide to debate on and shape solutions to numerous refugee crises. 

Privacy and data protection 

The UNHCR has been very vocal in the area of data protection, emphasising that ‘Data protection is part and parcel of refugee protection’. Since 2015, the Refugee agency has its own Data protection policy. The Policy is accompanied by the ‘Guidance on the Protection of Personal Data of Persons of Concern to UNHCR’, published in 2018, with the aim of assisting the UNHCR personnel in the application and interpretation of the above Policy. 

The Refugee agency has recently published a ‘Data Transformation Strategy 2020-2025’ aimed at strengthening its role as a leading authority on data and information related to forcibly displaced and stateless persons.

International Organization for Standardization

Acronym: ISO

Established: 1947

Address: Chemin de Blandonnet 8, 1214 Vernier, Geneva, Switzerland

Website: https://www.iso.org/iso/home.html

Stakeholder group: International and regional organisations

ISO is the International Organization for Standardization, the world’s largest developer of international standards. It consists of a global network of 170 national standards bodies – our members. Each member represents ISO in its country. The organisation brings together global experts to share knowledge and develop voluntary, consensus-based, market-relevant International Standards. It is best known for its catalogue of almost 25,000
standards spanning a wide range of sectors, including technology, food, and healthcare.

Digital activities

A large number of the international standards and related documents developed by ISO are related to information and communication technologies (ICTs), such as the Open Systems Interconnection (OSI) that was created in 1983 to establish a universal reference model for communication protocols. The organisation is also active in the field of emerging technologies including blockchain, the Internet of Things (IoT), and AI. The standards are developed by various technical committees dedicated to specific areas including information security, cybersecurity, privacy protection, AI, and intelligent transport systems.

Digital policy issues

Artificial intelligence

The joint technical committee of ISO and the International Electrotechnical Commission (IEC) for AI is known as ISO/IEC JTC1/SC 42 Artificial intelligence and is responsible for the development of standards in this area. To date, it has published 20 standards specifically pertaining to AI with 35 others in development. ISO/IEC 42001 is the flagship AI Management System Standard, which provides requirements for establishing, implementing, maintaining, and continually improving an AI management system within the context of an organisation. ISO/IEC TR 24028 provides an overview of trustworthiness in AI systems, detailing the associated threats and risks and addresses approaches on availability, resiliency, reliability, accuracy, safety, security, and privacy. The standards under development include those that cover concepts and terminology for AI (ISO/IEC 22989); bias in AI systems and AI-aided decision-making (ISO/IEC TR 24027); AI risk management (ISO/IEC 23894); a framework for AI systems using machine learning (ISO/IEC 23053); and the assessment of machine learning classification performance (ISO/IEC TS 4213). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Cloud computing

ISO and IEC also have a joint committee for standards related to cloud computing which currently has 27 published standards and a further 5 in development. Of those published, two standards of note include ISO/IEC 19086-1, which provides an overview, foundational concepts, and definitions for a cloud computing service level agreement framework, and ISO/IEC 22123-3, which specifies the cloud computing reference architecture.Standards under development include those on health informatics (ISO/TR 21332); the audit of cloud services (ISO/IEC 22123-2); and data flow, categories, and use (ISO/IEC 19944 series). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Internet of things

Recognising the ongoing developments in the field of IoT, ISO has a number of dedicated standards both published and in development, including those for intelligent transport systems (ISO 19079), future networks for IoT (ISO/IEC TR 29181 series), unique identification for IoT (ISO/IEC 29161), Internet of Media Things (ISO/IEC 23093-3), the trustworthiness of IoT (ISO/IEC 30149), and industrial IoT systems (ISO/IEC 30162). IoT security is addressed in standards such as ISO/IEC 27001 and ISO/IEC 27002, which provide a common language for governance, risk, and compliance issues related to information security. In addition, there are 26 standards under development, some of which provide a methodology for the trustworthiness of an IoT system or service (ISO/IEC 30147); a trustworthiness framework (ISO/IEC 30149); the requirements of an IoT data exchange platform for various IoT services (ISO/IEC 30161); and a real-time IoT framework (ISO/IEC 30165). Up-to-date information on the ISO and IEC joint technical committee for IoT (e.g. scope, programme of work, contact details) can be found on the committee page

Telecommunication infrastructure

ISO’s standardisation work in the field of telecommunications infrastructure covers areas such as planning and installation of networks (e.g. ISO/IEC 14763-2), corporate telecommunication networks (e.g. ISO/IEC 17343), local and metropolitan area networks (e.g. ISO/IEC/IEEE 8802-A), private integrated telecommunications networks (e.g. ISO/IEC TR 14475), and wireless networks. Next-generation networks – packet-based public networks able to provide telecommunications services and use multiple quality-of-service-enabled transport technologies – are equally covered (e.g. ISO/IEC TR 26905). ISO also has standards for the so-called future networks, which are intended to provide futuristic capabilities and services beyond the limitations of current networks, including the internet. Up-to-date information on the joint ISO and IEC technical committee that develops these standards (e.g. scope, programme of work, contact details ) can be found on the committee page.

Blockchain

ISO has published 11 standards on blockchain and distributed ledger technologies: ISO/TR 23455 gives an overview of smart contracts in blockchain and distributed ledger technologies; ISO/TR 23244 tackles privacy and personally identifiable information protection; and ISO 22739 covers fundamental blockchain terminology respectively. ISO also has a further eight standards on blockchain in development. These include those related to:  security management of digital asset custodians (ISO/TR 23576); taxonomy and ontology (ISO/TS 23258); and guidelines for governance (ISO/TS 23635). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details, etc.) can be found on the committee page.

Emerging technologies

ISO develops standards in the area of emerging technologies. 

Dozens of standards in the area of emerging technologies are those related to robotics. ISO has more than 40 different standards either published or in development that cover issues such as collaborative robots (e.g. ISO/TS 15066); safety requirements for industrial robots (e.g. ISO 10218 series); and personal care robots (e.g. ISO 13482). Autonomous or so-called intelligent transport systems (ITS) standards are developed by ISO’s ITS Technical Committee and include those for forward vehicle collision warning systems (ISO 15623) and secure connections between trusted devices (ISO/TS 21185). Standards are also being developed to address the use of virtual reality in learning, education, and training (e.g. ISO/IEC 23843).

Network security

ISO and IEC standards also address information security and network security . The ISO and IEC 27000 family of standards covers information security management systems and are used by organisations to secure information assets such as financial data, intellectual property, and employee information. For example,ISO/IEC 27031 and ISO/IEC 27035 are specifically designed to help organisations respond, diffuse, and recover effectively from cyberattacks. ISO/IEC 27701 is an extension of ISO/IEC 27001 and ISO/IEC 27002 for privacy information management, and details requirements and guidance for establishing, implementing, maintaining, and continually improving a Privacy Information Management System (PIMS).Network security is also addressed by standards on technologies such as the IoT, smart community infrastructures, medical devices, localisation and tracking systems, and future networks. Up-to-date information on the joint ISO and IEC technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Encryption

As more and more information (including sensitive personal data) is stored, transmitted, and processed online, the security, integrity, and confidentiality of such information becomes increasingly important. To this end, ISO has a number of standards for the encryption of data. For example, ISO/IEC 18033-1, currently under development, addresses the nature of encryption and describes certain general aspects of its use and properties. Other standards include ISO/IEC 19772 which covers authenticated encryption, ISO/IEC 18033-3 which specifies encryption systems (ciphers) for the purpose of data confidentiality, and ISO 19092 which allows for encryption of biometric data used for authentication of individuals in financial services for confidentiality or other reasons. ISO also has standards that focus on identity-based ciphers, symmetric and asymmetric encryption, public key infrastructure, and many more related areas. 

Data governance

Big data is another area of ISO standardisation; around 80% of related standards are developed by the ISO/IEC AI committee. The terminology for big-data-related standards is outlined in ISO/IEC 20546, while ISO/IEC 20547-3 covers big data reference architecture. ISO/IEC TR 20547-2 provides examples of big data use cases with application domains and technical considerations and ISO/IEC TR 20547-5 details a roadmap of existing and future standards in this area. Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Digital identities

Digital signatures that validate digital identities help to ensure the integrity of data and authenticity of particulars in online transactions. This, therefore, contributes to the security of online applications and services. Standards to support this technology cover elements such as anonymous digital signatures (e.g. ISO/IEC 20008 series); digital signatures for healthcare documents (e.g. ISO 17090-4 and ISO 17090-5); and blind digital signatures, which is where the content of the message to be signed is disguised, used in contexts where, for example, anonymity is required. Examples of such standards are ISO 18370-1 and ISO/IEC 18370-2.

Privacy and data protection

Privacy and data protection in the context of ICTs is another area covered by ISO’s standardisation activities. One example is ISO/IEC 29101 which describes a privacy architecture framework. Others include those for privacy-enhancing protocols and services for identification cards (ISO/IEC 19286); privacy protection requirements pertaining to learning, education, and training systems employing information technologies (ISO/IEC 29187-1); privacy aspects in the context of intelligent transport systems (ISO/TR 12859); and security and privacy requirements for health informatics (ISO/TS 14441).

Digital tools

ISO has developed an online browsing platform that provides up-to-date information on ISO standards, graphical symbols, publications, and terms and definitions.

Future of meetings

Future ISO meetings can be found at ISO – meeting calendar

Social media channels

Facebook @isostandards

Instagram @isostandards

LinkedIn @isostandards

X @isostandards

YouTube @iso

Skip to content