European Data Protection Board logo
Close menu

Certification

Certification is a voluntary tool that helps organisations ensure and demonstrate GDPR compliance. Certifications are issued by accredited bodies or by DPAs. The EDPB issues opinions on certification mechanisms and accreditation criteria to ensure consistency. When certification criteria are approved by an EDPB opinion, this may result in a European Data Protection Seal. In certain cases, certification can also provide appropriate safeguards when transferring data to third countries or international organisations.

Guidance

Guidelines 07/2022 on certification as a tool for transfers

Guideline
#Certification #Tools for transfers and derogations
Read more about
Guidelines 07/2022 on certification as a tool for transfers

Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation - version adopted after public consultation

Guideline
#Certification
Read more about
Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation - version adopted after public consultation
Show more

Policy work

EDPB-EDPS Joint Opinion 4/2026 on the Proposal for a Cybersecurity Act 2 and the Proposal on amendments to the NIS 2 Directive

Legislative opinion
#Cross-regulatory interplay #Cybersecurity #Certification
Read more about
EDPB-EDPS Joint Opinion 4/2026 on the Proposal for a Cybersecurity Act 2 and the Proposal on amendments to the NIS 2 Directive
Show more

Compliance instruments

Opinion 13/2026 on the draft decision of the Office of the Data Protection Ombudsman (FI SA) regarding the approval of the requirement for accreditation of a certification body pursuant to Article 43(3) GDPR

Opinion of the Board (Art. 64)
#Certification
Read more about
Opinion 13/2026 on the draft decision of the Office of the Data Protection Ombudsman (FI SA) regarding the approval of the requirement for accreditation of a certification body pursuant to Article 43(3) GDPR

Opinion 14/2026 on the Europrivacy certification criteria regarding their approval by the Board as European Data Protection Seal pursuant to Article 42.5 GDPR

Opinion of the Board (Art. 64)
#Certification
Read more about
Opinion 14/2026 on the Europrivacy certification criteria regarding their approval by the Board as European Data Protection Seal pursuant to Article 42.5 GDPR
Show more

Internal procedure

EDPB Document on the procedure for the adoption of the EDPB opinions regarding national criteria for certification and European Data Protection Seals

Procedure
#Certification
Read more about
EDPB Document on the procedure for the adoption of the EDPB opinions regarding national criteria for certification and European Data Protection Seals

EDPB document on the procedure for the approval of certification criteria by the EDPB resulting in a common certification, the European Data Protection Seal

Procedure
#Certification
Read more about
EDPB document on the procedure for the approval of certification criteria by the EDPB resulting in a common certification, the European Data Protection Seal
Show more

Related news

  • EDPB News

EDPB and EDPS support strengthening EU’s cybersecurity and easing compliance while protecting individuals’ personal data

  • EDPB News

EDPB brings clarity to data processing for scientific research, speeds up the finalisation of the anonymisation guidelines and approves first European data protection seal as a tool for transfers

All news