ISO is an independent, non-governmental international organisation with a membership of 167 national standards bodies.
The ISO27000 series centers around IT security & data protection, with ISO27001 being one of them. It is administered by the International Organisation for Standardisation, or ISO.
The requirements of these regulations are based on consumer needs and desires. ISO27001 answers them as well as it can, certifying only companies that can demonstrate the consistency, quality, and reliability of their data protection measures and procedures.
These standards are decided upon by global experts, regulatory and governmental bodies concerned with the standard of quality that consumers receive. These regulations tend to be utilised in countries around the world as scaffolds for their own regulations.