The European Data Protection Seal is the official European data protection certification under the General Data Protection Regulation (GDPR).[1] According to Art. 42 GDPR, the aim of this certification is to demonstrate "compliance with the GDPR of processing operations by controllers and processors".[2] Over 70 references to certification can be found in the GDPR, encompassing various obligations, such as:[2]
- Adequacy of the technical and organizational measures;
- Data sharing with data processors;
- Data protection by design and by default;
- International data transfers.
The adoption of the European Data Protection Seals falls under the responsibility of the European Data Protection Board (EDPB) and is recognized across all EU and EEA Member States.[3]
Implementation
editIn parallel to the adoption of the GDPR, several European research projects have been working on GDPR certification. This has led to the specification of the Europrivacy criteria that have been transferred to the European Centre for Certification and Privacy (ECCP). Europrivacy is managed by the International Board of Experts of ECCP.
In October 2022, the EDPB approved the Europrivacy criteria to serve as European Data Protection Seal under Art. 42 GDPR.[4] In 2024, Europrivacy was validated by the European Accreditation for accreditation under Art. 43 GDPR. Since then, several Certification Bodies have been accredited and the first European Data Protection Seals have been delivered.[5]
References
edit- ^ "EDPB Document on the procedure for the adoption of the EDPB opinions regarding national criteria for certification and European Data Protection Seals | European Data Protection Board". www.edpb.europa.eu. Retrieved 2024-11-04.
- ^ a b "Art. 42 GDPR – Certification". General Data Protection Regulation (GDPR). Retrieved 2024-11-03.
- ^ "EDPB document on the procedure for the approval of certification criteria by the EDPB resulting in a common certification, the European Data Protection Seal | European Data Protection Board". www.edpb.europa.eu. Retrieved 2024-11-03.
- ^ "Europrivacy | European Data Protection Board". www.edpb.europa.eu. Retrieved 2024-11-03.
- ^ "Register of certification mechanisms, seals and marks | European Data Protection Board". www.edpb.europa.eu. Retrieved 2024-11-03.