The PROTECT PLUS AI standard is designed to enable organisations to measure and audit AI solutions or services.

 

It is applicable to any Controller or Processor of personal data who is able to demonstrate their application of Data Protection best practice and wish to be PROTECT PLUS certified.

​

The PROTECT PLUS AI controls are derived from ICO guidance, the NIST AI Risk Framework and the ISO 42001 AI Management System

​

Crosswalk document available to download here

​

​

​

​

​

The primary processing activity within the scope of this standard is defined by you in the SCOPE SUBMISSION TABLE.

 

The PROTECT PLUS standard controls are mapped to the UK GDPR requirements relating to the processing in scope to enable organisations to demonstrate compliance with UK data protection law.

​

Organisations and their supplier/Vendors/Solution providers that have demonstrated compliance with the PROTECT PLUS AI standard are entitled to use the PROTECT PLUS AI logo on their promotional material.

 

​​Submissions for Protect Plus certification are taken using the Protect Plus Compliance Statement