The Information Commissioner’s Office carried out an informal and subsequently a formal consultation on its framework criteria for a UK Privacy seal and on 19 December circulated its summary of responses and further actions as part of the consultation process.
The summary of responses highlighted areas where the ICO has changed their approach and other areas where clarification of the position of the ICO is made.
One of the changes is that originally the seal project was aimed at new certification schemes but now as a result of responses to the consultation the ICO has extended its project to allow existing schemes to be put forward for ICO endorsement provided those schemes are adapted to meet the requirements of the framework criteria and undergo UKAS accreditation.
Organisations that wish to participate in the privacy seals project will need to be accredited against ICO17065 (requirements for bodies certifying products, processes and services) and even where an existing certification provider does not have ICO17065 this will not prevent it from applying to the ICO for endorsement of its schemes provided that it subsequently obtains UKAS accreditation.
The ICO has confirmed that a single seal or trust mark will be introduced which is likely to be trademarked and subsequently licensed to approved providers and the ICO is obtaining legal advice on the privacy seal scheme project and proposed arrangements for intellectual property rights and the implications of revocation of any ICO endorsement.
This article was written by Robert Bond.
For more information contact Robert on +44 (0)20 7427 6660 or firstname.lastname@example.org