Skip to Main Content
Main Menu
Consumer Information

TRUSTe Data Privacy Certification Standards

Our Data Privacy Certification and Assurance programs help organizations demonstrate compliance with privacy regulations while developing strong data protection practices.

Creating consistency with the TrustArc Framework

TrustArc offers a set of privacy and data protection certification and assurance programs that enable organizations that collect or process personal data to demonstrate responsible data protection practices consistent with regulatory expectations and standards for privacy accountability.

The privacy certification programs are developed using both the TrustArc Privacy & Data Governance Accountability Framework standards and the jurisdictional laws and regulations requirements.

 

The Framework is based upon globally recognized international security standards and data privacy laws, such as:

  • EU General Data Protection Regulation (GDPR)
  • ISO 27001
  • U.S. Health Insurance Portability and Accountability Act (HIPAA)
  • OECD Privacy Guidelines
  • APEC Privacy Framework
  • Data Privacy Framework

See how a framework-based certification can amplify your privacy protection operations and demonstrate legal compliance.

Privacy assurance program governance standards

All companies participating in a privacy assurance program must comply with the Assurance Certification Program Governance Standards in addition to the standards relating to the program they are participating in, including APEC CBPR and PRP, Data Collection, Enterprise Privacy, EU-US Data Privacy Framework, and Responsible AI.

Privacy certification standards

APEC Cross Border Privacy Rules (CBPR)*

Our program is designed to ensure the continued free flow of personal data across Asia-Pacific Economic Cooperation member country borders, while establishing meaningful protection for the privacy and protection of sensitive data – this is a certification for data Controllers.

Learn more about our program

View standard

APEC Privacy Recognition for Processors (PRP)**

This program is designed for Processors to demonstrate their ability to support data Controllers in compliance with the APEC CBPR and help Controllers identify qualified and accountable Processors.

Learn more about our program

View standard

Enterprise Privacy

This program is designed based on the TrustArc Privacy & Data Governance Framework, which aligns with major global privacy standards and laws, such as the OECD Privacy Guidelines, the APEC Privacy Framework, the EU General Data Protection Regulation (GDPR), the U.S. Health Insurance Portability and Accountability Act (HIPAA), and ISO 27001.

Learn more about our program

View standard

EDAA Privacy

This program is designed to help companies conducting digital advertising practices in the EU certify their practices and display the European Interactive Digital Advertising Alliance (EDAA) trust seal.

Learn more about our program

Data Collection

This program applies to companies that help optimize or serve online advertisements. It provides ad companies who lack a direct relationship with an individual a way to demonstrate they use personal data collected from websites, mobile app, or other sources in a manner that respects an individual’s preference.

Learn more about our program

View standard

Responsible AI

Our program is designed to showcase your brand’s responsible AI. Stand out by committing to fairness and transparency by incorporating principles from leading standards such as NIST AI RMF, OECID AI Principles, ISO/IEC 42001, as well as AI regulations like the EU AI Act.

Learn more about our program

View standard

Privacy verification standards

TRUSTe Data Privacy Framework Verification

This program allows participating organizations to demonstrate compliance with internationally recognized benchmarks and to leverage those practices to align their privacy program with existing and emerging international frameworks. The requirements for this program are based on the principles laid out in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework.

Learn more about the program

Learn more

*TRUSTe’s APEC CBPR Accountability Agent participation documents are available for review by downloading the following:

**TRUSTe APEC PRP accountability agent participation documents are available for review by downloading the following:

We’re with you at every stage of your certification

Launch

Get up and running quickly with our team of privacy experts. They’ll work with you to identify a certification or assurance solution that addresses your needs

Learn more

Assess

As you begin to assess your data privacy practices TrustArc can help you identify and remediate your activities, as you close your compliance requirement gaps

Demonstrate

As your company continues to grow and transform, we stay in step with your business operations— to provide continued evidence of privacy protection activities, ensuring your TRUSTe seal is maintained.

What you get when you certify with us

  • Our people support your people

    Our team effectively combines broad industry expertise with deep regulatory knowledge to help you demonstrate a differentiated privacy program.

  • Get up and running quickly

    We’ll work with you to efficiently kick-off a certification that will begin demonstrating compliance commitments.

  • Improve your existing documentation

    We use regulation-aligned templates, built by our team of experts to augment your existing policies and procedures.

  • Evidence of your privacy efforts

    Displaying the trusted privacy seal on your website demonstrates your industry leadership and dedication to data privacy and data security.

Not sure what assurance you need? We can help.

Find the right program
Back to Top