Intelligence concerning certification of company products, services, processes and people can - given specific circumstances - be strictly confidential. For this clients of EIPACC can fully rely on compliance with applicable confidentiality clauses. This is why EIPACC registers can not always fully disclose compliance details in the public part of EIPACC registers.
In case a party - for whatever compelling reason - would like to acquire some GDPR compliance confidential information concerning a certain company or person a specific procedure will be followed. After having sent the Access Request Information Form (ARIF) below a responsible EIPACC will contact all relevant parties confidentially and align which information (intelligence) can be shared with whom under which approved terms and conditions.
© 2021| European Institute for Privacy Audit, Compliance & Certification (EIPACC) | www.gdprcertifications.eu