第 42 條 GDPR. 認證
Article 42 GDPR. Certification
[…]
[…]
7. 對控管者或處理者所為之認證,最長期限應為三年,且在相同要 件下並持續符合相關要求者,得更新之。第 43 條所定之認證機構或 主管監管機關(如適用)於欠缺認證要件或不再符合認證要件之情況 下,應撤回認證。
7. Certification shall be issued to a controller or processor for a maximum period of three years and may be renewed, under the same conditions, provided that the relevant criteria continue to be met. Certification shall be withdrawn, as applicable, by the certification bodies referred to in Article 43 or by the competent supervisory authority where the criteria for the certification are not or are no longer met.
[…]
[…]