GDPR certification using controls taken from the ICO approved LOCS standard
WHY CERTIFY WITH PROTECT PLUS?
Protect Plus is a modified version of the control set approved by the ICO in the LOCS:23 standard from the same author/scheme owner.
Same controls - simpler audit process.
As Protect Plus does not require auditing by a certification body it is NOT an article 42 certification and NOT officially recognised by the ICO. This is to minimise cost making it a practical and achievable model suitable for SMEs.
The core compliance controls remain and others varied to be more relevant to SMEs.
The first step is to review the relevant Protect Plus standard and define the processing activities within scope of the certification. This can be all or part of the function of the organisation and can include any use of AI solutions/services.
The organisation then completes a self-assessment questionnaire called a Compliance Statement . Organisations answer a series of questions that confirm compliance with the ICO approved core controls and additional optional controls if appropriate.
The Compliance Statement must be signed-off by either an official Protect Plus Partner or a senior representative of the applicant and the answers are then SUBMITTED to be reviewed by the 224 Certification Team.
HOW DOES IT WORK?
PROTECT PLUS GENERIC STANDARDS
PROTECT PLUS UNIVERSAL
Controls to measure your organisations GDPR compliance
PROTECT PLUS CC
Controls to measure the GDPR compliance of on line services for Children
PROTECT PLUS AI
Controls to measure the GDPR compliance of AI solutions or services
PROTECT PLUS AI INTERNATIONAL
Enables International Organisations to implement an AI Governance framework
WHO CAN CERTIFY?
Data Controllers
Any organisation that processes personal data
Data Processors
Any organisation that processes personal data on behalf of a Data Controller
CERTIFICATION FLOW
1 DOWNLOAD
Get the Protect Plus Standard and Compliance Statement form free of charge from a Protect Plus Partner
2 SCOPE
Define the scope of certification
3 ASSESS
Carry out a gap analysis against the standard
Use a Protect Plus Partner to help complete the Compliance Statement and verify you are ready for certification (No certification fee)
OR
DIY
4 SUBMIT
Upload the completed Compliance Statement Form HERE
5 CERTIFY
Submission verified by the LOCS:23 authors.
Certification fee applies
GET INVOLVED
INTRODUCTION TO PROTECT PLUS
£50
This eLearning is designed to introduce you to the fundamentals of PROTECT PLUS, how it applies to your clients and prepare you for the Approved Implementor training should you decide to expand your knowledge.
Upon successful completion you will:
-
Understand how the Protect Plus certification scheme works
-
Understand the Protect Plus ecosystem
-
Understand the benefits of becoming a Protect Plus Implementor
PROTECT PLUS LEAD IMPLEMENTOR
£750
This eLearning includes the 'Introduction to PROTECT PLUS' eLearning
This eLearning is designed to take a deeper dive into PROTECT PLUS, the role of the Lead Implementor, how self-certification works and prepare you to assist applicants on their journey.
Upon successful completion you will understand
-
The role of the Protect Plus Implementor
-
Understand the core components of the Protect Plus standard
-
Understand the self- certification process
-
Be ready to take the Lead Implementor knowledge test
-
Be ready to assist applicants with their compliance preparation
AI GOVERNANCE PRACTITIONER
£200
Whether you are in IT, privacy, compliance or projects, if you are working on an A.I. project or looking to procure an A.I. solution it is essential you understand the data protection implications.
This course is designed to cover the fundamentals of how GDPR requirements may be impacted by A.I. and what you can do to ensure appropriate security, data subjects rights are protected and maintain accountability.
The course is an e-learning designed to be taken at your own pace. It can be used stand alone or further training can be taken before taking the final assessment.