Data protection management

The ISO 10012 standard helps organisations implement processes to ensure personal data is managed correctly.

Processors and controllers as per Article 24 of the EU General Data Protection Regulation can use this certification to demonstrate their competence in handling personal data.

How this certification will benefit you

1
The certification makes it easier to participate in tendering processes.
2
It provides independent proof that your data protection management system is working effectively.
3
It helps you identify risks and avoid the related dangers.
4
A certification also protects and backs up your organisation's reputation.
5
Certifications strengthen stakeholder trust in your organisation.

Send an enquiry now

Certifying your management system in accordance with ISO 10012

You define the scope of your management system (for example, sites or divisions) and submit an application for the ISO 10012 certification.

The certification body uses your application as the basis for assessing the professional requirements and your organisation's readiness for the certification audit.

A comprehensive on-site audit is conducted to assess your management system's effectiveness and the extent to which you are implementing the requirements contained in the standard.

The certificate is issued following the successful completion of steps 2 and 3.

Your certificate is maintained on the basis of an annual monitoring audit.

A recertification audit is conducted every three years to verify the ongoing quality of your management system in line with the applicable standards.

Please see the certification scheme (only in German) for further information on content and the examination and assessment process.

GDPR monitoring body

Many companies find that implementing the GDPR poses unresolved questions and legal uncertainties. Trade associations representing specific categories of controllers or processors can address this by drafting codes of conduct in accordance with Article 40 GDPR and having these approved by the Data Protection Authority (DSB). Obligatory monitoring of the codes of conduct is an essential aspect.

Austrian Standards acts as a monitoring body in the context of Article 41 GDPR on behalf of the competent professional associations of the Austrian Economic Chamber (WKÖ) and is accredited by the Data Protection Authority.

Want to find out more about the certification?

Please send us your contact details – we'd be happy to assist you!

I am interested in a...

Your message

First name

Last name

Organisation

E-mail

I would like to receive newsletters on news, products and services from Austrian Standards.
I can revoke my consent to receive newsletters at any time, either via the unsubscribe link contained in every e-mail or by sending an e-mail to [email protected]. This does not affect the lawfulness of the processing carried out on the basis of the consent until revocation. The data will not be passed on to third parties. Information on data protection: www.austrian-standards.at/datenschutz.

Data protection management

How this certification will benefit you

Certifying your management system in accordance with ISO 10012

Submitting an application

Audit stage 1 – Readiness assessment

Audit stage 2 – Certification audit

Issuing of the certificate

Monitoring audit

Recertification audit

GDPR monitoring body

Want to find out more about the certification?

What's new at Austrian Standards?