Certification Management

Certification Transfer Process
‍A certification transfer occurs when an organization holding a valid management system certification from an accredited body seeks to transition their certification to Emagine. We understand this is an important decision for your organization, and we've developed a thorough evaluation process to ensure a smooth transition.

Before accepting any transfer, Emagine verifies that your existing certification is covered under an IAF MLA signatory accreditation. Our lead assessor then conducts a pre-transfer review, examining your certification history and current status.This review includes analyzing your most recent certification or recertification audit reports, subsequent surveillance reports, and related documentation. Without access to these critical documents, or if surveillance audits are overdue, we must treat your organization as a new certification client. Aspart of our due diligence, we carefully evaluate any outstanding nonconformities and verify their resolution status. Major nonconformities must be addressed before we can proceed with the transfer. We also review your established audit cycle to ensure continuity of certification, making and documenting any necessary adjustments to meet relevant standards.

Our comprehensive review extends to your organization's complaint history, current certification cycle status, and any ongoing engagement with regulatory bodies regarding compliance matters. This may include an on-site visit in addition to documentation review when deemed necessary.

Incases where the transfer cannot proceed - for example, due to invalid or expired certification - Emagine will treat your organization as a new client, following our standard certification process. Throughout the transfer process,we maintain detailed documentation of all decisions and communications to ensure transparency and compliance with certification requirements.

Suspension, Withdrawing, or Reducing Scope of Certification
Emagine maintains the authority to suspend, withdraw, or reduce certification scope when justified by substantial evidence. This ensures the ongoing integrity of our certification program and compliance with management system standards.

Suspension becomes necessary in several situations. When an organization's management system consistently fails to meet certification requirements or demonstrates serious compliance issues, we must take action.Similarly, if a certified client prevents the completion of required surveillance or recertification audits within mandatory timeframes, suspension may be warranted. We also honor voluntary suspension requests from our certified clients. During a suspension period, which is determined by our certification decision maker, the certification becomes temporarily invalid. Organizations have the opportunity to address the suspension triggers and request reinstatement. This process involves a comprehensive surveillance-style audit to verify that all issues have been properly resolved. Our audit team provides detailed recommendations to both the client and certification decision maker regarding reinstatement.

If an organization fails to address suspension causes within the established timeframe, Emagine may need to withdraw the certification or reduce its scope.Scope reduction specifically excludes areas where persistent or serious certification requirements aren't met, while maintaining certification for compliant operations. Any scope modifications align with applicable ISO standards.

In cases of complete certification withdrawal, our engagement terms require organizations to cease using all certification-related advertising materials. Emagine maintains transparency by accurately communicating certification status- whether suspended, withdrawn, or reduced - to any inquiring parties.

This structured approach to certification status changes protects the validity of our certification program while ensuring clear communication with all stakeholders.


Certification Marks and Branding Policy
To ensure compliance with ISO and ANAB standards around the authorization and use of certification mark. This policy provides general information to organizations that have obtained an information security management system certification regarding the authorized marketing of the certification and the use of the Emagine Compliance certification mark (the “Mark”). These requirements were previously agreed upon as a condition of our acceptance of the assessment.

Scope
Applies to the clients of Emagine Compliance, Inc. who receive assessment services.

Policy
‍General Use of Emagine Compliance Marks
‍
The certified organization shall conform to the reasonable and mutually agreed requirements of Emagine when making reference to its certification status in communication media such as the Internet, brochures, advertising, or other documents. The reference must include identification of the certified client; the type of management system and the applicable standard; and the certification body (Emagine) issuing the certificate. • The certified organization shall not make or permit any misleading statements regarding its certification. Furthermore, the certified organization shall not use or permit the use of a certification document, or any part thereof, in a misleading manner• The certified organization shall, upon suspension or withdrawal of its certification, discontinue its use of all advertising matter that contains a reference to ISO 27001 certification and/or includes a mark.
• The certified organization shall amend all relevant advertising material when the scope of certification has been modified.
• The certified organization shall not allow reference to its information security management system certification to be used in such a way as to imply that Emagine certifies a product, service, or process.
• The certified organization shall not imply that the certification applies to activities that are outside the scope of registration.
• The certified organization shall not use its certification in such a manner that would bring Emagine and/or the certification system into disrepute or cause loss of public trust
• The certified organization shall use the mark only in reference to the information security management system certified by Emagine.
• The Certified organization shall not use the certification in such a manner to be applied to laboratory test, calibration, or inspection reports.
• The certified organization acknowledges that Emagine has the right to suspend or withdraw certification if it finds that the Certified organization has purposefully made incorrect references to the certification status or misleading use of certification documents, marks, or audit reports.
• The mark is a service mark of Emagine. The mark shall only be used during periods of active certification. The mark may not be used in connection with any product or service that was not within the scope of the certification review, or in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Emagine.
• The mark will be provided in one (1) approved form. The certified organization may use any version of the mark during periods of active certification. The certified organization shall not modify the form or color of any mark provided by Emagine.

Use of Other Marks
The ISO, Emagine Compliance, Inc (“Emagine”), and Accreditation Body(ANAB) symbols and logos are all legal Trademarks requiring adherence to the rules of usage as described herein and as may be amended from time to time, under legal terms, and referred to herein as Mark or Marks. Emagine Compliance,Inc. does not provide, indicate or imply permission for clients to use the International Organization for Standardization logo or permission to incorporate the ISO logo into any customized logo or display. The ISO logo may only be displayed with express written permission from the InternationalOrganization for Standardization. Further details regarding absolute restriction on use of ISO logos or wording can be found at ISO.org/ISO-name-and-logo. An extract of the information found therein is at the bottom of this document. The AccreditationBodies (ANAB, UKAS, etc.) Mark may not be used in isolation from the Emagine Compliance, Inc. mark. The Accreditation Bodies (ANAB) Mark must always remain attached to the Emagine Compliance, Inc. Mark as provided. The client shall always abide by the “Policy on the Use of ANAB Accreditation Symbols and Claims of Accreditation Status”, which is document number PR 1018and the latest version should be referenced directly from the ANAB website.
‍
Certification References

All references to being certified to an ISO standard must include the full name of the Standard. And it is preferred that the reference should also include appropriate wording to indicate the certificate has been issued by Emagine Compliance. The organization may only display the current certificate issued by Emagine Compliance. An exception would be display of the original certificate issued by Emagine Compliance.

Monitoring and Reviewing

Emagine Compliance shall exercise proper control of ownership and shall take action to deal with incorrect references to certification status or misleading use of certification documents, Marks, statements, or audit reports. Such action could include requests for correction and corrective action, suspension, withdrawal of certification, publication of the transgression and, if necessary, legal action.

The effectiveness of this policy will be monitored and periodically reviewed for improvement by the ISO Practice Lead.