Proceedings of the International scientific and practical conference ―Science, Technology and Culture: Interaction, Evolution and Progress‖ (December 21-23, 2025) / Publisher website: www.naukainfo.com. – Copenhagen, Denmark, 2026. – 161 p.

74 the field of personal data protection establishes mandatory requirements for information processing, which encourages organizations to implement modern security mechanisms and comply with established standards [4]. Thus, ensuring information security in modern information systems is a complex, multi-level task that requires a combination of technical, organizational, and legal measures. Only a comprehensive approach to information protection can ensure the stable functioning of information systems and reduce the risks associated with external and internal threats. REFERENCES: 1. ISO/IEC 27001:2022 Information security management systems. URL: https://www.iso.org/standard/82875.html 2. NIST Cybersecurity Framework. URL: https://www.nist.gov/cyberframework 3. ISO/IEC 27002:2022 Information security controls. URL: https://www.iso.org/standard/75652.html 4. General Data Protection Regulation (GDPR). URL: https://gdpr.eu/