NEW: Your data protection seal of approval (state accreditation in preparation)

Demonstrate compliance with your data protection measures through a state-accredited data protection seal of approval.

More


Overview of our certificates

(state accreditation in preparation)

 

Show your compliance within data protection and data security.

State-accredited certificates offer a higher level of security and business reputation. Whether your focus is on data protection or data security, we offer a variety of solutions:

 

  • Data protection: If the focus of your product is data protection, ePrivacycert is one of the only companies offering the possibility of acquiring a state-recognised data protection seal of approval. This seal has a high reputation in Germany and globally.
  • IT security: If your goal is to document your company in IT security (information security management system), the acquisition of a certification according to ISO 27001 is desirable.
  • Data protection management: Through the extension of ISO 27701, it is possible to add ISO 27001 with a corresponding data protection management system (also known as PIMS, Privacy Information Management System) or to set it up in simultaneously. This is a data protection management system and not a legal audit of the data processing procedures in accordance with the GDPR. Therefore ISO 27701 is not a data protection seal of approval.

 

With many years of expertise in data protection and data security, we are happy to help you choose the right tools.

Prove your measures within data protection and data security by choosing the appropriate certificate.

Certify your data processing procedures by a state-accredited data protection seal of approval.

Obtaining the state-accredited ePrivacycert (pursuant to Art. 42 GDPR) enables companies in the EU to prove that their data processing procedures comply with GDPR (i.e., marketing purpose). Data protection seals fulfil any obligations to provide evidence to supervisory authorities, as well as proof of the existence of necessary guarantees for data transfers to third-party countries.

Certification with the ePrivacycert seal is therefore the opportunity to document compliance with GDPR via a state-accredited process. 

 

Your benefit: 

Benefit from the advantages of the accredited ePrivacycert data protection seal of approval regarding the proof of compliance with the rules of GDPR and a significantly improved reputation of your company in the market.

Information + Procedure

Management system for the organisation of information security (ISMS) according to international standard

Information security shall sufficiently protect information of any kind against loss, manipulation, and unauthorized access by third parties. Implementation is to be ensured by a suitable information security management system (ISMS) with appropriate technical and organizational measures according to comprehensive Plan-Do-Check-Act processes.

Risks for companies can arise from outdated technology, operating errors, or infections with malware. There is a threat of IT failures, cybercrime, and data misuse. The ISO 27001 certification, which has proven itself in practice over many years, offers the opportunity to introduce a robust information security process to systematically meet the expectations of legislators, customers and stakeholders. Therefore, sharpen your company profile and improve your competitiveness in the market.

In today's complex business environment, many clients insist on an appropriate certification of their business partners. ISO 27001 is the global benchmark for effective information security management.

The standard serves as an orientation to anchor continuous information and data security in business management. Financial losses due to data breaches and resulting potential lawsuits can be avoided. Business risks and the dangers of information loss, data misuse and other IT risks are reduced.

Only the information security management system (ISMS) is certified. The focus is on IT and not on the authority to process data and compliance with the GDPR.

 

A competitive advantage: 

Receive legal certainty and professional use of the certificate in your communication through professional and proven certification according to ISO 27001.

Information + Procedure

Information management system as an expansion stage based on an ISMS in accordance with ISO 27001 for data security + data protection

Data protection is closely linked to data security. If the latter has already been certified through an existing implementation of ISO 27001 an extension can be made through a corresponding data protection management system (also known as PIMS, Privacy Information Management System). This is done within the new ISO 27701. This is now an extended protection for companies' personal data. 

ISO 27701 also contains supplements to ISO 27002, the guideline for implementing the measures from Annex A of ISO 27001. The standard provides guidance on the following points:

  • Expansion to include aspects of data protection
  • Appointment of a person responsible for the “Privacy Information Management System”
  • Data protection training for employees
  • Logging of accesses and changes
  • Encryption, e.g., highly sensitive categories of personal data (e.g. health data)
  • Consideration of the Privacy-By-Design principle
  • Security incident review of data breaches

The certification of a data protection management system within ISO 27701 is different to a certification by a data protection seal of approval (according to Art. 42 DS GVO). Only a data protection seal of approval verifies if the data protection measures, and business processes comply with GDPR. The demarcation from a certification of a data protection management system within the framework of ISO 2770 is a complex topic. If you have any questions, please do not hesitate to contact us.

 

Your advantage in data protection:

Certification according to ISO 27701 enables you to proof data protection and the management of personal data, globally. The company's position in the market will be significantly strengthened.

Information + Procedure

A SELECTION OF OUR REFERENCES

    Sachiko Scheuing

    European Privacy Officer, Acxiom Deutschland GmbH

    As a global leader of marketing services, we uniquely fuse trust, experience and scale to fuel data-driven results. We partner with ePrivacy to assure that our data services are fully compliant with strict data protection laws.

    Christian Henschel

    Co-founder & CEO, adjust GmbH

    The performance of ePrivacy is very impressive. Even most complex tasks are completed quickly.

    Christoph Landes

    General Counsel und Sicherheitsbeauftragter, Medi GmbH & Co. KG

    Since several years, ePrivacy has been supporting us in the development and expansion of our data protection and information security structures. Supported by optimal availability and excellent expertise, ePrivacy's support leads us to excellent solutions. It is a self-evident fact that the communication is friendly, unpretentious and goal-oriented. Even data protection can be fun this way. Thank you very much!

     

    Marco Kersch

    Mitglied der Geschäftsleitung, AZ Direct GmbH

    ePrivacyseal achieves a high reputation due to the excellent technical and legal expertise from ePrivacy.

    Torsten Ahlers

    Managing Director, Otto Group Media GmbH

    With ePrivacyseal we strengthen our customers trust in our practiced data protection.

    Dino Bongartz

    CEO, The ADEX | Leading Data Management Platform, Marketplace & Verification

    As a data processor that works with numerous EU and German clients, the ePrivacyseal certification and ePrivacy’s guidance has been particularly valuable.

    Kasper Skou

    CEO, Semasio GmbH

    A privacy seal puts our customers' minds at ease, allowing us access to more data to improve targeting performance.

    Dr. med. Johannes Jacubeit

    Founder & CEO, connected-health.eu GmbH / LifeTime

    High data protection standards are mandatory for health data. ePrivacy's certification is therefore very important for our health app.

    Rasmus Giese

    CEO, United Internet Media GmbH

    For United Internet Media, high-quality targeting is not just a marketing promise, but a self-commitment. The Targeting Seal by ePrivacy allows us to demonstrate the outstanding quality of our Predictive Behavioral Targeting System TGP® and to make it transparent to our customers and business partners. 

     

    Minoko Mingfei Zhang

    vivo Mobile Communication Co.,Ltd., Senior Manager of Security & Privacy Compliance

    Greatest appreciation to your team for the outstanding job you did for us. The cooperation with ePrivacy demonstrates our ambitions and capabilities to protect our customer data.