Information Commissioner's Office
Statement on ICO-approved certification schemes
The ICO has announced it will be working with UK Accreditation Service (UKAS) to deliver the ICO-approved certification schemes.
The ICO will approve and publish the certification schemes and, as the UK national accreditation body, UKAS will accredit certification bodies to deliver those schemes.
Ian Hulme, Director for Regulatory Assurance said:
“The GDPR introduced the accountability principle, which requires data controllers to demonstrate their compliance with the law. Certification is a voluntary, and therefore very valuable means of gaining and demonstrating GDPR compliance.
“The ICO is pleased to confirm that UKAS will play a key role in GDPR compliance by accrediting the certification bodies who will be awarding these new and innovative data protection certification schemes. We look forward to working with UKAS.”
Matt Gantley, Chief Executive of UKAS said:
“I am delighted that the Information Commissioner’s statement recognises the valuable role UKAS has to play in GDPR compliance. UKAS has been working closely with the ICO on the development of requirements for accredited certification in line with European Data Protection Board (EDPB) guidelines. We look forward to continuing our successful partnership with the ICO as new GDPR schemes are developed and to welcome expressions of interest from organisations wishing to become accredited certification bodies.”
Latest News from
Information Commissioner's Office
ICO statement in response to an announcement made by the Metropolitan Police Service on the use of live facial recognition24/01/2020 15:15:00
In October 2019 we concluded our investigation into how police use live facial recognition technology (LFR) in public places.
ICO's blog on its information rights work23/01/2020 16:10:00
Colleagues from the ICO’s access to information and compliance department share their experiences and involvement in raising awareness of our regulation of access to information legislation.
ICO publishes Code of Practice to protect children’s privacy online22/01/2020 16:33:00
The Information Commissioner’s Office yesterday published its final Age Appropriate Design Code – a set of 15 standards that online services should meet to protect children’s privacy.
Blog: Adtech - the reform of real time bidding has started and will continue17/01/2020 16:25:00
A blog by Simon McDougall, ICO Executive Director of Technology and Innovation
National retailer fined half a million pounds for failing to secure information of at least 14 million people10/01/2020 13:25:00
The Information Commissioner’s Office (ICO) has fined DSG Retail Limited (DSG) £500,000 after a ‘point of sale’ computer system was compromised as a result of a cyber-attack, affecting at least 14 million people.
ICO launches consultation on draft direct marketing code of practice09/01/2020 09:10:00
The Information Commissioner's Office (ICO) has launched a public consultation on a draft direct marketing code of practice.
Blog: The benefits of sharing personal data – what can we learn from Open Banking?07/01/2020 13:20:00
The ICO’s Regulators’ Business Innovation Privacy Hub has recently been looking at the key data protection considerations for innovators who are working in the Open Banking space.
Trust, technology and slippers with torches02/01/2020 14:10:00
Jonathan Bamford holds up a tatty bundle of papers. They’re scrumpled, time worn, ripped and held together with yellowing Sellotape, but with the Royal coat of arms crown still proudly visible on the cover.