BS 10012

Personal Information Management

Protect your reputation and demonstrate that you manage personal data responsibly

All organisations work with personal data, whether it belongs to your employees or your customers. Recent legislation means that protecting that personal information is becoming increasingly important. 

One of the best ways you can demonstrate your commitment to data protection is through the BS 10012 Personal Information Management system (PIMS).

What is BS 10012? 

The BS 10012 Standard helps businesses to develop processes for the acquisition, storage, handling and deletion of personal information by implementing  a recognised management framework. More importantly, it helps you achieve compliance with legal requirements and nationally recognised good practice.

A Personal Information Management System will also help to ensure that your business handles data sensitively and ethically, proving to your customers that any information you collect about them is safe and handled responsibly.

The Benefits of BS 10012

Gaining BS 10012 certification will clearly demonstrate to your customers that you handle and process their personal information lawfully and fairly. This declaration can help to provide comfort to your customers in a world where their personal information is a valuable commodity.

In addition, certification will allow you to stand out in a crowded market – opening up opportunities for new contracts and enhancing your long-term performance.

Here are some benefits of using the BS 10012 framework:

  1. Keep in line with legal obligations – Develop data handling processes that comply with the European Union General Data Protection Regulation (GDPR)
  2. Reduce the risk of fines – The Standard drives increased employee awareness of, and compliance with, legal data protection obligations – minimising the risk of legal action
  3. Improve your corporate image – Ensuring that you handle the personal information of your customers ethically can increase stakeholders and interested parties’ confidence
  4. Implement clear data handling processes – Protect the health and well-being of your employees, sub-contractors and the general public by implementing clear processes that everyone can easily follow

How much does BS 10012 cost?

The cost of certification depends on several factors. These include your sector, annual turnover, and number of employees. We will also need to know if you require industry specific accreditation (such as ASCB or UKAS).

However, QMS is committed to providing a cost-effective route to BS 10012 certification. That’s why we focus on making the process straightforward. We will save you money because, instead of creating complex document trails, we will build a Personal Information Management System that works for you.

Find out how affordable BS 10012 certification really is by using our Fee Calculator and we’ll email you a bespoke quote immediately.

  • Product of Interest

  • Company Information

  • Contact Details

    • Please fill this in
      • Other Products

    • Annual Turnover
      Please fill this in
      £0 to £75,000
    • Company Name
      Please fill this in
    • Sector
      Please fill this in
    • Total Staff
      Please fill this in
      0 to 5
    • Number of Offices
      Please fill this in

    • First Name
      Please fill this in
    • Last Name
      Please fill this in
    • Phone Number
      Please fill this in
    • Your Email Address
      Please fill this in

By submitting this form, you are agreeing for QMS to retain the information provided and to contact you about this quotation. Learn more

The Requirements of BS 10012

The BS 10012 standard uses a structure of ten clauses called Annex SL which, roughly grouped together, cover four key areas:

  1. Personal Information - the processes your business must put in place to manage and protect the personal information you hold, whether that information is about employees, customers or anyone else
  2. Resource Management - how resources such as people, infrastructure and facilities must be assigned and kept up-to-date in order to ensure the best possible performance
  3. Management Responsibility - the areas where your management team need to focus on, be involved with and be accountable for
  4. Measurement, Analysis and Improvement -  these clauses determine how you will decide if your Management System is working as expected, facilitating the continual improvement of your system

Frequently Asked Questions

What is BS 10012:2017?

What is a personal information management system?

What is BS 10012:2009?

How can QMS help your Business?

The QMS process gets your business certified for success:


Our nationwide team of consultants and auditors has provided certifications to clients ranging from SMEs to blue chip organisations across a broad spectrum of verticals and industries.


Our processes add value at every stage, without taking up unwarranted management time. We commit to providing you with the best possible value for money – including a price promise from the outset, along with the ability to stagger payments at no extra cost.


We remove the red tape and paperwork for you, making the process as smooth and uncomplicated as possible, and ensuring you get the framework that works for you.

A smiling QMS Certification Development Consultant takes a call on his headset

How have businesses benefited from BS 10012?

Client Testimonials of QMS and the ISO Certification Process

    An excellent service with excellent delivery.

    [The Consultant] was prompt, smart and polite. He explained in detail how the audit process was going to be undertaken. He was informative and helpful whilst carrying out the process.
    Mick Willey. Armatus Risks Security Services Ltd

    Originally posted on

    General review

    An excellent audit of the full range of our accreditations.

    The QMS audit was thorough and the advice given throughout the process enables us to improve our internal auditing procedures and focus our attention on areas that could be improved. [The Consultant]'s approach to the audit was professional and he took the time to explain the detailed requirements of the standard where issues arose.
    David Smith, Company Secretary. Wagstaff Interiors Group

    Originally posted on

    General review

BS 10012 Certification Process

Gaining BS 10012 certification with QMS is straightforward and can take as little as 45 days. Our expert consultants will work with you and your business to make the process as simple as possible.

This includes highlighting any improvements you need to make to your current business procedures.

Once you have achieved certification the certification cycle will commence. This is made up of surveillance and re-certification audits, one of which must take place each year, around the anniversary of your certification. These visits confirm your continued compliance with the Standard and verify the validity of your certification.

Your all-in-one Management System Solution

QMS Connect delivers all the tools you need to achieve and maintain ISO compliance.

With simple navigation, real-time reporting and the ability to modify and update content on the go, QMS Connect keeps you in control. Accessible online via your computer, tablet or smartphone 24 hours a day, QMS Connect helps you manage your ISO Management System in real-time.

QMS Connect helps engage your teams, so that you can capture data that will drive business decisions – increasing repeat business, reducing customer complaints and ultimately saving you both time and money.

A screenshot of the QMS Connect system on various platforms from desktop to mobile

BS 10012 Resources

    Guide to Information and Cyber Security

    A visual guide to the areas covered by each of the information security products

    A visual guide to the areas covered by each of the information security products

    Information Security downloads

    Standard Overview: BS 10012

    Overview of the BS 10012 Personal Information Management System Standard

    Overview of the BS 10012 Personal Information Management System Standard

    BS 10012 downloads

    What Information Security Products are Available?

    The QMS International suite of information security products

    The QMS International suite of information security products

    Information Security downloads

    Guide to implementing BS 10012

    Understand the principles of BS 10012 and how they impact your business

    BS 10012 downloads

    Beginner's Guide to BS 10012

    Personal Information Management System requirements explained for every day users

    BS 10012 downloads

    Checklist for BS 10012 implementation

    Understand what BS 10012 requires from your business

    BS 10012 downloads

Latest BS 10012 news

At QMS we are constantly updating our approach and process to meet the latest changes in how BS 10012 and Management Systems in general work.

    Risky business: why an out-of-date management system is a risk

    Don’t let your standards slip with an out of date management system – upgrading is easier than you think.


    How do you manage your management review?

    Make your next management review one to remember with these top tips on how to keep them engaging.


    Context of the Organisation Explained

    An in-depth look at Clause 4 of the Annex SL structured ISO Standards, Context of the Organisation.



QMS International use cookies to provide you with a better site experience, enable features and to help us understand how our website is being used.

By continuing, you consent to the use of cookies in accordance with our Cookie Policy

Allow All Cookies

Allow Strictly Necessary Cookies Only