Article 32 PDPA
Obligation to meet the accreditation criteria

1. During the period for which accreditation has been granted, the accredited entity shall be required to meet the criteria referred to in Article 41 (1) and (2) of Regulation 2016/679, in effect as of the date of issuance of the accreditation certificate.

2. The President of the Authority shall revoke, by decision, accreditation if it is found that the accredited entity:

1) does not meet or no longer meets the accreditation criteria referred to in Article 41 (1) and (2) of Regulation 2016/679;

2) takes actions that do not comply with Regulation 2016/679.