Physical access control encompasses all technical and organizational measures that regulate physical entry to buildings, rooms, and secure areas. Typical technical means include card/chip systems, biometric systems, and mantraps. Organizational measures cover visitor management, zone concepts, and key management. In an ISMS, physical access control is required by ISO 27001 Annex A.7.2. Effectiveness depends on regularly reviewing access rights and promptly adjusting them when personnel changes occur.