A market evaluation for a European privacy certification scheme is being carried out with the EU-funded project, European Privacy Seal (EuroPriSe). The first seal has been awarded, and the certification procedure will be continued following a pilot phase.

The European Privacy Seal confirms that IT products or IT-based services fulfil the European requirements as regards privacy protection and data security. The conformity is assessed by independent legal and technical experts and validated by participating certification bodies, for example the Independent Centre for Privacy Protection Schleswig-Holstein (German: Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein, ULD).

• Workshop for establishing the requirements and the scope of inspection for an IT product or an IT service
• Evaluation of the product or service and its documentation by accredited EuroPriSe experts
• Drafting of a privacy evaluation report for submission to the certification body

• Confidence in IT products and IT services
• Transparency of procedures
• Advantage on the market compared to competitors
• Certification of conformity with the European privacy protection requirements

• Two-stage, quality assured certification procedure
• In the case of successful certification, entitlement to use the European Privacy Seal 
• TÜViT operates a ULD-accredited Evaluation Body for Privacy (legal/technical) and has accredited legal/technical EuroPriSe experts

The procedure

• Creation of a privacy protection requirement profile in accordance with the relevant legal regulations, taking into consideration the purpose and the area of application  
• Analysis of the current privacy protection characteristics using the product description 
• Assessment of the current characteristics against the privacy protection requirements  
• Examination of the implementation (technical and/or organisational) of the requirements  
• Drafting of a report regarding the product characteristics and submission to the ULD

The objective

Achievement of the European Privacy Seal through 

• Fulfilment of the European requirements as regards privacy protection and data security
• Adherence to the principles of
  • Necessity 
  • Data avoidance 
  • Data minimisation 
  • IT security (availability, confidentiality, integrity, reliability)
• Proof of conformity of the product with the European regulations regarding privacy protection and data security through certification with the UL