APEC Certification Overview

June 17, 2019

The Asia-Pacific member economies developed a privacy framework as a volunteer
system that outlines standards relating to personal information protection as the data
moves across borders. Controllers that volunteer in the program are assessed by an
Accountability Agent against the Cross Border Privacy Rules (CBPR) and if compliant,
receive a certification. Processors are assessed against the Privacy Recognition for
Processors and would also receive a certification if compliant with the program.

The certification process consists of:

  • Initial Certification Assessment
  • Planning
  • Fieldwork Process & Certification
  • Ongoing Monitoring & Compliance Review
  • Re-Certification & Annual Attestation

This resource goes into more detail on this process and the program requirements.

Previous Flipbook
A Little Privacy Please
A Little Privacy Please

Why ISO 27018 can benefit organizations seeking to comply with the GDPR

Next Flipbook
Direct Liability of Business Associates Under HIPAA
Direct Liability of Business Associates Under HIPAA