Certification scheme application process
-
1. Have you read our guidance on developing certification criteria and applied it to the certification criteria?
Yes
-
2. Are the criteria designed to be applied to processing operations that constitute a product, process or service offered by a controller or processor and therefore, suitable for use under ISO 17065/2012?
Yes
-
3. Do your criteria describe a practical application of UK GDPR in relation to the scope?
Yes
-
4. Have you spoken to a member of the ICO Codes & Certification team prior in the development phase of your scheme?
Yes
Yes - we think that you are ready to submit certification scheme criteria
You can download and complete the UK GDPR certification criteria submission form and send it to us at [email protected].
Please note that as a public authority we are subject to the Freedom of Information Act 2000 (FOIA) and so are legally required to respond to any FOI requests we receive, which may include requests for information provided to us about UK GDPR certification.
We will treat any FOI requests on a case-by-case basis. Therefore, when submitting information to us you should clearly indicate anything that you consider confidential or commercially sensitive.
We will not disclose any information without consulting concerned parties and considering any representations. We will consider what exemption, if any, applies including Section 41 (information provided in confidence), Section 36 (conduct of public affairs) and Section 43 (commercial interests) of FOIA.