APEC Privacy Certifications

TRUSTe APEC CBPR
Privacy Certifications

Extend your privacy commitment with the APEC Cross Border Privacy Certification.

The APEC CBPR framework is a voluntary, enforceable program designed to ensure the continued free flow of personal information across APEC member country borders, while establishing meaningful protection for the privacy and security of personal information. It is the first framework approved for the transfer of personal data between all 21 APEC Member countries, with the U.S. being the first formal participant and the Federal Trade Commission serving as the first enforcement authority.

TRUSTe APEC Certification

TRUSTe is an Accountability Agent approved to certify data transfer practices under the APEC Cross-Border Privacy Rules (CBPR) framework. To view TRUSTe’s accountability agent participation documents click here.

Companies doing business in the Asia-Pacific region choose TRUSTe for APEC Certification to demonstrate their commitment to consumer data privacy and protection under the APEC CBPR system.

To view a complete list of APEC Certified companies click here.

Deep Privacy Expertise + Proven Methodology + Powerful Technology

TrustArc solutions are powered by a unique combination of deep privacy expertise developed over two decades, proven methodologies refined through tens of thousands of engagements, and powerful technology operating at scale for six years.

Assessment Features

Privacy Assessments provide the information required to understand and remediate compliance risks. Your Privacy Solutions Manager will guide you through the process, utilizing our proven methodology and powerful technology.


Comprehensive Assessment

The first step is to define the assessment scope by business units, product/service lines, and digital properties (websites, apps, cloud platforms). A Privacy Solutions Manager works with your team to efficiently guide discovery of necessary information, including relevant data flows and evaluation of your privacy policies and practices against relevant standards.

Tracker Scanning

The assessment is augmented with information gleaned by using TrustArc scanning technology on the applicable digital properties, providing insight into personally identifiable information (PII) data collection, first and third party trackers, and level of risk through the Privacy Sensitivity Index (PSI).

Findings Report

A findings report is delivered which includes a gap analysis, risk summary and remediation recommendations. The report outlines actionable steps required to achieve compliance.

Searchable Audit Trail

All assessment work and supporting documentation is available in a searchable, central repository - providing a way to respond to inquiries and demonstrate compliance for internal / external audits.

Ongoing Guidance

Access to privacy experts for ongoing policy guidance along with educational webinars, events, whitepapers, client advisories, privacy tips and research.

Dispute Resolution

Access to our third-party dispute resolution service, which helps efficiently manage privacy inquiries from customers and addresses dispute handling compliance requirements.

TRUSTe Privacy Feedback Button

External demonstration to consumers, business partners and regulators that your company uses TrustArc technology and tools to manage privacy related questions or concerns. The Privacy Feedback Button may be placed on your digital Privacy Policy page and links to a mechanism for consumers to submit questions or feedback.

Privacy Feedback

Certification Features

Based on the information gleaned from the assessment, a Privacy Solutions Manager guides you through the remediation process, helping to ensure required changes are completed.


Remediation / Validation

A Privacy Solutions Manager assists with any necessary remediation steps, including providing relevant templates and process change advice. We then validate that your privacy statements accurately reflect your updated privacy practices and are consistent with applicable standards.

Letter of Attestation

As proof of TRUSTe Certification, an official Letter of Attestation can be shared with your business partners, providing your organization with competitive differentiation.

TRUSTe Privacy Certification Seal

After completing the required changes, we authorize your use of the TRUSTe Certification seal for display on applicable digital properties. The seal is hosted and linked to a TRUSTe Validation Page to provide real-time verification along with an easy-to-understand consumer notice that you meet globally recognized privacy requirements.

TRUSTe APEC seal

Enable safe global business expansion through APEC privacy-compliant data transfers.


Resources