How can your company increase the trust of your customers and the public that it appropriately protects their personal data?
Art. 42 of the General Data Protection Regulation (GDPR) enables certification bodies to issue certification based on an approved certification mechanism. Official certification under the rules set out in Art. 42 GDPR provides a new option for data controllers to reduce their risks and to demonstrate the importance they place in achieving compliance with the legislation and on their partners’ personal data protection.
GDPR certification in line with Art. 42 GDPR:
What can be certified?
An individual (e.g. a data protection officer)?
No, the EDPB in Regulation No. 1/2018 clarifies that certification in accordance with GDPR Articles 42 and 43 does not apply to individuals
A company as a whole?
No, company and management systems as a whole are not eligible to GDPR certification
A Data processing?
Yes, you can certify as many data processing activities as you wish
An applicant for certification (data controller) must meet the conditions of an approved certification scheme under Art. 42 GDPR. Europrivacy is the first certification scheme that has been approved by the European Data Protection Board to become an official European GDPR certification scheme.
Certificates are issued by an independent certification body, accredited by a supervisory authority or the national accreditation body of an EU Member State.
An accredited certification body issues a certificate on the basis of criteria approved by the European Data Protection Board (EDPB) for a maximum of 3 years.
GDPR certification process:
As a consultant, PwC Slovakia prepares applicants for certification in accordance with the requirements of the Europrivacy certification scheme, and has experts trained in all Europrivacy requirements:
we will examine and review the GDPR compliance of your data processing with the requirements and criteria of the certification scheme;
we will review your existing personal data protection measures;
we will identify specific areas for improvement so that the requirements of the certification scheme are precisely met;
we will assist you with the implementation of the precise requirements of the certification scheme, which are not met;
- As a result, your certification process with the accredited certification body will be problem-free and smooth.
Information on Europrivacy, the certification scheme for GDPR compliance
The Europrivacy certification scheme was developed under the European research programme Horizon 2020, co-financed by the European Commission and Switzerland. It is the first certification scheme approved as a European certification scheme under Art. 42 GDPR.
What are the benefits of GDPR certification?
builds trust – not only with data subjects, but also with partners and stakeholders;
increases the data controller’s reputation on the market;
identifies and mitigates legal and financial risks – thanks to a systematic analysis of deficiencies;
facilitates and reduces the risks with data transfers;
turns compliance costs into a source of value and revenues; and
creates a competitive advantage.
For more information on how GDPR certification can help your organization and how we can assist you in preparing for obtaining a GDPR certification, please contact our team.
Europrivacy is an international trademark registered in several jurisdictions.
