BS 10012 Certification
Personal Information Management

Protect your reputation and demonstrate that you manage personal data responsibly

All organisations work with personal data, whether it belongs to your employees or your customers. Recent legislation means that protecting that personal information is becoming increasingly important.

One of the best ways you can demonstrate your commitment to data protection is through the BS 10012 Personal Information Management system (PIMS).

Three security cameras on a pole

WHAT IS BS 10012?

The BS 10012 Standard helps businesses to develop processes for the acquisition, storage, handling and deletion of personal information by implementing a recognised management framework. More importantly, it helps you achieve compliance with legal requirements and nationally recognised good practice.

A Personal Information Management System will also help to ensure that your business handles data sensitively and ethically, proving to your customers that any information you collect about them is safe and handled responsibly.


Gaining BS 10012 certification will clearly demonstrate to your customers that you handle and process their personal information lawfully and fairly. This declaration can help to provide comfort to your customers in a world where their personal information is a valuable commodity.

In addition, certification will allow you to stand out in a crowded market – opening up opportunities for new contracts and enhancing your long-term performance.

Here are the top benefits of using the BS 10012 framework:

  1. Keep in line with legal obligations – Develop data handling processes that comply with the European Union General Data Protection Regulation (GDPR)

  2. Reduce the risk of fines – The Standard drives increased employee awareness of, and compliance with, legal data protection obligations – minimising the risk of legal action

  3. Improve your corporate image – Ensuring that you handle the personal information of your customers ethically can increase stakeholders and interested parties’ confidence

  4. Implement clear data handling processes – Protect the health and well-being of your employees, sub-contractors and the general public by implementing clear processes that everyone can easily follow


Prices will vary based on the size and complexity of your business.

To receive your personalised quote, simply fill in your details on the calculator below.

  • Product of Interest

  • Company Information

  • Contact Details

  • Product of Interest

  • Company Information

  • Contact Details

  • Product of Interest

  • Company Information

  • Contact Details


The BS 10012 standard uses a structure of ten clauses called Annex SL which, roughly grouped together, cover four key areas:

  1. Personal Information – the processes your business must put in place to manage and protect the personal information you hold, whether that information is about employees, customers or anyone else

  2. Resource Management – how resources such as people, infrastructure and facilities must be assigned and kept up-to-date in order to ensure the best possible performance

  3. Management Responsibility – the areas where your management team need to focus on, be involved with and be accountable for

  4. Measurement, Analysis and Improvement – these clauses determine how you will decide if your Management System is working as expected, facilitating the continual improvement of your system


What is BS 10012:2017?

What is a personal information management system?

What is BS 10012:2009?

How can QMS help your Business?

The QMS process gets your business certified for success:


Our nationwide team of consultants and auditors has provided certifications to clients ranging from SMEs to blue chip organisations across a broad spectrum of verticals and industries.


Our processes add value at every stage, without taking up unwarranted management time. We commit to providing you with the best possible value for money – including a price promise from the outset, along with the ability to stagger payments at no extra cost.


We remove the red tape and paperwork for you, making the process as smooth and uncomplicated as possible, and ensuring you get the framework that works for you.


Youtube logo YouTube logo

    The auditor was open and willing to help, understand our business and how we use the accreditation to support our company aims and objectives. He gave good solid information on the process and how we can develop the system as our business grows
    Paul Mitchell, UK Operations Manager, Thuasne UK Ltd

    From day 1 the service has been wonderful and importantly useful. The meetings with the representatives of QMS have really supported us with accepting and adapting to new ways of working and have put us at the forefront of growing our business through better internal processes.
    Hershika Kerai, Business Manager, Aumaxum Ltd

3 Steps to Certification

With the help of QMS, the certification process can take as little as 45 days to complete

    Gap Analysis

    A QMS Consultant will visit your Organisation to review and document your current processes and procedures, highlighting any areas that do not meet the requirements of the Standard.

    3 Step Certification


    Now its time to make sure any required process or procedural changes are made, as highlighted in the Review. QMS can provide templates to assist you in doing this.

    3 Step Certification


    An Auditor must now visit your Organisation to check that the documented processed are being followed and that the necessary changes have been made. Once they are satisfied, you will be rewarded with your certification.

    3 Step Certification

Once you have achieved certification the certification cycle will commence. This is made up of surveillance and re-certification audits, one of which must take place each year, around the anniversary of your certification. These visits confirm your continued compliance with the Standard and verify the validity of your certification.

Shaking hands in office


QMS Connect delivers all the tools you need to achieve and maintain ISO compliance.

With simple navigation, real-time reporting and the ability to modify and update content on the go, QMS Connect keeps you in control. Accessible online via your computer, tablet or smartphone 24 hours a day, QMS Connect helps you manage your ISO Management System in real-time.

QMS Connect helps engage your teams, so that you can capture data that will drive business decisions – increasing repeat business, reducing customer complaints and ultimately saving you both time and money.

QMS Connect website on multiple devices


    Guide to Information and Cyber Security

    A visual guide to the areas covered by each of the information security products

    A visual guide to the areas covered by each of the information security products

    Standard Overview: BS 10012

    Overview of the BS 10012 Personal Information Management System Standard

    Overview of the BS 10012 Personal Information Management System Standard

    What Information Security Products are Available?

    The QMS International suite of information security products

    The QMS International suite of information security products

    Guide to implementing BS 10012

    Understand the principles of BS 10012 and how they impact your business

    Checklist for BS 10012 implementation

    Understand what BS 10012 requires from your business


At QMS we are constantly updating our approach and process to meet the latest changes in how BS 10012 works.

    10 Information Security Tips for Small Businesses

    Read our tips on how small and micro businesses can protect themselves from information security threats



QMS International use cookies to provide you with a better site experience, enable features and to help us understand how our website is being used.

By continuing, you consent to the use of cookies in accordance with our Cookie Policy

Allow All Cookies

Allow Strictly Necessary Cookies Only