Skip to content
IAQG Authentication Information

Privacy Notice

IAQG Authentication Program – Privacy Notice

Section titled “IAQG Authentication Program – Privacy Notice”

Effective Date: June 1, 2026

1. INTRODUCTION

Section titled “1. INTRODUCTION”

This Privacy Notice explains how IAQG processes personal data in connection with the Authentication Program and related services.

2. DATA CONTROLLER

Section titled “2. DATA CONTROLLER”

Plexus International, 5550 Nicollet Avenue, Minneapolis, MN 55419. Telephone: 1-612-238-1200 Email: legal@plexusintl.com

3. PERSONAL DATA COLLECTED

Section titled “3. PERSONAL DATA COLLECTED”

We may collect:

  • Identification and contact information
  • Professional qualifications and training records
  • Audit experience and performance data
  • Payment and transaction data
  • Communications and submitted documentation
  • Photo and personal profile (biographical) details

4. PURPOSES OF PROCESSING

Section titled “4. PURPOSES OF PROCESSING”

We process personal data to:

  • Administer authentication applications
  • Verify qualifications and eligibility
  • Monitor auditor performance
  • Maintain authentication records
  • Comply with legal and accreditation requirements
Section titled “5. LEGAL BASIS”

Processing is based on:

  • Performance of a contract
  • Legitimate interests in program integrity
  • Compliance with legal obligations

6. DATA SHARING

Section titled “6. DATA SHARING”

We may share data with:

  • IAQG affiliates and service providers
  • Certification Bodies
  • Regulatory and accreditation authorities
  • Authorized stakeholders
  • Current or Past employers

7. INTERNATIONAL TRANSFERS

Section titled “7. INTERNATIONAL TRANSFERS”

Where personal data is transferred internationally, appropriate safeguards (such as standard contractual clauses) are implemented.

8. DATA RETENTION

Section titled “8. DATA RETENTION”

We retain personal data only as long as necessary for:

  • Authentication program administration
  • Compliance obligations
  • Dispute resolution

9. DATA SUBJECT RIGHTS

Section titled “9. DATA SUBJECT RIGHTS”

Subject to applicable law, you may:

  • Access your data
  • Request correction or deletion
  • Restrict or object to processing
  • Request data portability

Requests may be submitted via: Support Ticket

10. DATA SECURITY

Section titled “10. DATA SECURITY”

We implement appropriate technical and organizational safeguards. However, no system is completely secure.

11. THIRD-PARTY SYSTEMS

Section titled “11. THIRD-PARTY SYSTEMS”

Authentication Services may integrate with third-party platforms (e.g., OASIS). Their data practices are governed by their own policies.

12. CONTACT

Section titled “12. CONTACT”

We have appointed a Data Protection Officer (“DPO”) to oversee compliance with this policy. The DPO can be contacted at dpo@plexusintl.com. You also have the right to make a complaint at any time to a supervisory authority.

13. CHANGES

Section titled “13. CHANGES”

We may update this Privacy Notice from time to time. Updated versions will be posted on the Authentication Website.

© 2026 IAQG. All rights reserved. IAQG, AAQG, APAQG, EAQG, OASIS and SCMH are registered trademarks of IAQG.