Accreditations and conformity assessment bodies
Information security management systems
This subject field includes the accreditation of conformity assessment bodies in accordance with DIN EN ISO/IEC 17021-1:2015 “Conformity assessment – Requirements for bodies providing audit and certification of management systems” for various management system standards. The scope of the subject field includes the accreditation of bodies wishing to certify information security management systems in the various fields, including for example certification in accordance with the ISO/IEC 27001 standard, as well as certification for the IT security catalogue pursuant to Sections 11 (1a) and (1b) of the German Energy Industry Act (EnWG) on the basis of ISO/IEC 27006. In addition, this subject field also includes anti-bribery management systems as per DIN ISO 37001.
The accredited conformity assessment bodies are listed in the DAkkS online database of accredited bodies and can use the DAkkS logo on the certificates they issue in accordance with the requirements of the ordinance on the use of the accreditation symbol by accreditation bodies. EA/IAF membership and the signatory status of the MLA ensures the worldwide validity and acceptance of these certificates.
The data protection subject field comprises the accreditation of certification bodies in accordance with Article 43 GDPR on the basis of DIN EN ISO/IEC 17065 and the supplementary requirements for accreditation of the Data Protection Conference (DSK) of the independent federal and state data protection supervisory authorities.
Benefits of accreditation
This accreditation not only certifies that conformity assessment bodies have the competence for their work, it also independently confirms maintenance of this competence by means of regular assessments.