The first tranche of FAQ has been published by the Guarantor for the protection of personal data and by Accredia, the single national accreditation body for certification bodies, who worked together as part of a collaboration project aimed at exchanging information on certification activities and accreditation required by the GDPR, the EU Regulation on data processing.
It will finally be possible to have an answer on what certification for privacy purposes is, what guarantees accreditation provides, who can issue certifications on data processing and who can request them, or to understand whether the employee data management software, can be certified pursuant to the GDPR.
“The document – reads a note from the authority – provides useful clarifications to all owners or managers of data processing, both in the business and public administration sectors, who wish to use a certification to demonstrate their commitment to comply with data protection obligations and compliance of processing with the requirements established by the GDPR”.
The guidelines can be consulted on the websites of the Privacy Guarantor or Accredia.
