According to the ICO, the new certification schemes will raise the bar of data protection in children’s privacy, age assurance and asset disposal
The ICO has approved the first UK GDPR certification scheme criteria. Certification is a provision under Article 42 UK GDPR. It is based on data protection law and international standards for certification of products, services and processes and has been developed in partnership with UKAS, the United Kingdom’s national accreditation body.
Certification was introduced under the UK GDPR with the aim of helping organisations demonstrate compliance with data protection rules and, in turn to inspire trust and confidence in the people who use their products, processes and services.
It works by providing a framework for organisations to follow, which offers clients and customers assurance that they are adhering to strong standards. Organisations with expertise in a particular area can develop scheme criteria.
The ICO has approved the criteria for three schemes, which will now be rolled out:
The ICO has produced guidance on certification.
Published: 2021-08-24T12:00:00