Recently the government, business organizations and IT industry are keen to discuss the announced new amendments to the Personal Data Protection Act issues. In this research, we are interested in corporate organization and implementation of information security management system (ISMS), and its ability to import compliance (the Compliance) to support the use of the control project in order to achieve personal Data Protection Act by the specification requirements through the management of the ISMS ISO 27001 according to the study corresponding to integration of digital forensics programs by the domestic scholars I-Long Lin Professor requests that the digital evidence standard procedure be amended. In addition, we construct the personal data protection of Digital Evidence Forensics Standard Operating Procedure for Personal Information Protection Management (DEFSOP for PIPM).Provides an integrated information security governance mechanisms for government agencies and corporate organizations, which strengthen the organization and the facets of digital evidence in the capital protection level of evidence collection and presentation of evidence, and the information security protection energy or training reference for forensic professionals.