top of page
Image by Ian Schneider

CERTIFICATION

Certification Control Criteria

LOCS:23

Approval granted by the ICO 01.02.24 

REF: ICO-CSC/006


UK ONLY (ICO & UKAS Approved)
ICO certification criteria logo colour 006_LOCS23.jpg
LOCS UK
Business Meeting throught the Window

Free Control Supplements

Supplemental best practice compliance that do not form part of the certification audit
PP AI sup cover.png
LOCS EU cover.png
NEW - supplemental AI controls 
(free download)
EU ONLY
(Free download)

Certification Process

1 DOWNLOAD

Download the free LOCS:23 standard from the ICO here
2 PREPARE

Carry out a Gap Analysis against the LOCS:23 standard and address any non-compliance 

We recommend using an official Approved Implementor here
3 CERTIFY

Apply to the independent Certification Body for audit here
Business Conference

The Official Certification Mark

Specifies Certification Body

The Official Certification Mark can only be awarded by a UKAS accredited Certification Body and is the only Mark that signifies LOCS:23 Certification as either a Data Controller or Data Processor.
 
All Certified organisations will be automatically published in a publicly available register accessible both here and by using the QR code on a Certification Mark.
 
It is highly recommended that clients check the validity of Certification before relying on it.
 
The Certification Mark is valid for 3 years from date of issue

The LOCS logo may be used for other purposes but the official Certification Mark will always follow the format of the above example and display the following:
 
  • Name or logo of Certification Body making award
  • Name of Certified organisation
  • Certified Organisation's corporate address
  • Certification Status (Controller or Processor)
  • Date of issue
  • Validation QR code (enables look up of Certification register)
​​
If an organisation claims to be certified but does not have a Certification Mark in this format you are advised to check the Certification register and if in doubt or to report any misuse contact info@locs23.com
Use of the Certification Mark is closely monitored. Inappropriate or fraudulent use may result in legal action.
Cert Mark Controller.png

QR code links back to CB website to validate certification

Specifies Data Controller or

Data Processor

SCHEME REVIEW

The Certification Scheme has a scheme review process designed to ensure the overall integrity and relevance is maintained. You can see more here


COMPLAINTS

If you wish to make a complaint regarding the Certification Scheme you can see the complaints and appeals process here


CERTIFICATION BODIES

For more information on the Certification Body operating requirements click here

Certification Types

Organisations can Certify as a Data Controller or a Data Processor

LOCS2 Controller.png

Suitable for:

  • Law firms

  • Barristers

  • In-house Council

LOCS2 Processor.png
CONTROLLER
PROCESSOR

Suitable for:

  • Tech providers

  • Service Providers

  • Chambers

Hear about certification from the ICO as well as the challenges and benefits of certifying from law firms and Chambers that have successfully completed the process.
Working from Home

Ecosystem Options

APPROVED INPLEMENTORS
LOCS2 AI.png

Approved Implementors are experts in the LOCS standard, have full knowledge of the LOCS audit and can assist firms with their certification preparation.

QUALIFIED CONSULTANCIES
LOCS2 QC.png

Qualified Consultancies are organisations that have two or more Approved Implementors.

LOCS ACADEMY
LPP v2B.png

A LOCS Practitioner has passed a knowledge test that covers

  • Data Protection fundamentals

  • InfoSec fundamentals

  • LOCS:23 fundamentals

FREE consultation


Want to know how the certification works and the potential benefits?


Request a 30 minute Teams meeting here

bottom of page