The PROTECT PLUS UNIVERSAL standard covers all core processing activities and aligns with all GDPR articles.

 

It is applicable to any Controller or Processor of personal data who is able to demonstrate their application of Data Protection best practice and wish to be PROTECT PLUS certified.

​

The primary processing activity within the scope of this standard is defined by you in the SCOPE SUBMISSION TABLE.

 

The PROTECT PLUS standard controls are mapped to the UK GDPR requirements relating to the processing in scope to enable organisations to demonstrate compliance with UK data protection law.

​

Organisations and their supplier/Vendors/Solution providers that have demonstrated compliance with the PROTECT PLUS standard are entitled to use the PROTECT PLUS logo on their promotional material.

 

​You can include the assessment of an AI solution/service using the optional AI Governance module.​

​

Submissions for Protect Plus certification are taken using the Protect Plus Compliance Statement