The Personal Information Protection Commission and the Korea Internet & Security Agency (KISA) announced on the 1st that the 'Global Cross-Border Privacy Rules (Global CBPR)' certification system will be officially implemented starting on the 2nd.
The Global CBPR certification is a system aimed at promoting safe cross-border personal information transfer and enhancing electronic commerce among member countries, granting certification to corporations that have established a certain level of personal information protection frameworks. Certified corporations will enhance their external credibility in overseas operations and gain advantages in personal information transfer procedures.
This certification system is based on the mutual recognition system that began in 2011 among Asia-Pacific countries (APEC CBPR), and was further promoted with the establishment of a global council led by Korea, the United States, and Japan in 2022. Currently, four regions, including the United Kingdom and Dubai, are participating, and several countries have expressed their intention to join.
With this implementation, 12 domestic corporations that already hold APEC CBPR certification will automatically receive Global CBPR certification. Corporations wishing to obtain new certification can check the review methods and schedule on the KISA website in June.
The certification body, the Korea Internet & Security Agency, will handle the certification review tasks, while the Personal Information Protection Commission will establish related policies as the domestic overseeing authority.