In connection with various personal data controllers’ requests for information about the certification for compliance with the General Data Protection Regulation (Regulation (EU) 2016/679, GDPR), CPDP would like to inform you that currently none of the organizations or associations providing such certification has been accredited by us. CPDP would like to point out that a certification body can be accredited in other EU Member State and should provide the necessary documents when offering certification service.
With regard to information received in the Commission for Personal Data Protection about General Data Protection Regulation (Regulation (EU) 2016/679, GDPR) trainings, CPDP informs the controllers and the citizens that it has not authorized neither company or training center to carry out personal data protection trainings, nor has approved training programs. The controllers are not obliged to take part in such trainings. The participation of the controllers in training is their own decision and responsibility.
For all private and public parties concerned, CPDP organizes vast awareness rising campaign on the GDPR application. In order to optimize the resources, by the events organization is applied the regional and branch principle. The campaign purpose is to be provided general explanations on the philosophy of the GDPR, its main definitions, the new obligations of the personal data controllers, the data subjects rights, the data protection officers functions and the requirements they have to fulfill. The information campaign will continue after 25 May 2018, depending on the public interest.
CPDP publishes on its official site all officially adopted and approved information materials on the application of the General Data Protection Regulation. The published documents can be found HERE.