PRISM Privacy+ Certification

Protect your data with the industry's most rigorous privacy and information management standard for service providers.

Apply & Renew Now Find a Service Provider

Standards

Why Become Certified?

As a records and information management service provider, maintaining compliance and security best practices isn’t optional—it’s essential. i-SIGMA’s PRISM Privacy+ Certification provides independent, third-party verification that your operations meet these standards, giving your clients confidence that you’ve done more than simply claim compliance.

By achieving Privacy+ Certification, you help your clients fulfill their regulatory due diligence requirements while positioning your business as a trusted, credible partner in information management.

Review Manual

Standards

Understanding the PRISM Privacy+ Certification Process

Our certification represents the highest level of professional information destruction standards. We rigorously evaluate and validate every aspect of data protection protocols.

Apply Today

Why Use a Privacy+ Certified Service Provider?

Data protection regulations require organizations to perform due diligence and ongoing monitoring of records management providers. i-SIGMA’s Privacy+ Certification is specifically designed to meet these requirements—verifying compliance and security best practices so you can confidently fulfil your regulatory obligations.

Find a PRISM PRIVACY+ Certified Service Provider Now

PRISM Privacy+ Certification FAQs

Get answers to common questions about i-SIGMA’s Privacy+ Certification, including requirements, timelines, and how to get started.

Still have questions?

Let’s talk - book a 15-minute intro call with our team

Book a call

Do I need to be an i-SIGMA member to become Privacy+ Certified?

Yes. Privacy+ Certification is a benefit of i-SIGMA membership, and you must be an active member in good standing to apply and maintain certification.

Are membership dues and certification fees the same?

No. Membership and Privacy+ Certification are separate programs with separate annual fees and renewal cycles.

What is the process to become Privacy+ Certified?

Submit your application and fees, then complete an audit through i-SIGMA. You may also qualify using an existing SOC 2 report or ISO 27001 certification.

How long does certification take?

Typically 4–8 weeks through the audit process. If submitting a qualifying SOC 2 or ISO 27001, it may be completed more quickly.

Where can I find the certification requirements?

All requirements are available in the Privacy+ Certification Specifications Reference Manual.

Is support available during the process?

Yes. The i-SIGMA Certification team is available to guide you. You can reach them at certification@isigmaonline.org.

What happens if I don’t pass the audit?

You’ll receive feedback and guidance to address any gaps, with the opportunity to move forward once requirements are met.

What if a company falsely claims to be certified?

Concerns can be reported to ethics@isigmaonline.org and will be reviewed in accordance with i-SIGMA’s Code of Ethics.

Member Voices

Real experiences from PRISM Privacy+ Certified Professionals

PRISM Privacy+ Certification reassures customers providers operate under “strict controls… to reduce the chances for mishandling of information”

Access

Certification reflects a commitment to highest standards and guidelines

Williams Data Management

TrueSred

Michael Roberts

CEO, SecureData Solutions

Ensures data is handled securely throughout its lifecycle

DeVries Business Services

Certification provides “an additional layer of security and protection” for clients

Secure Records Solutions (SRS)

Become PRISM Privacy+ Certified Today

Ready to elevate your data protection?

Take the first step towards industry-leading information security standards

Apply Now Learn More