Home  -  Standards  -  Standards FAQ

TAPA STANDARDS – FAQ Section

What happens to ideas for changes to standards that are sent to TAPA?

Standards requirements are mandatory to pass certification. What if I can’t meet or don’t think a requirements is needed what are my options?

How are waivers requests processed?

When a revised standard is released how will this affect my existing certification status?

What are the costs for certification?

How often are the standards updated?

We are interested in getting TAPA certified. Can you give us information and contact details on the TAPA certification process?

Country laws often restrict the use of criminal background vetting. As this is a requirement in the TAPA Standards, how should LSP’s and Applicants seeking to be certified deal with this?

What are the requirements for the LSP/Applicant person who is conducting the interim self audits between certification audits? Must this person be an Authorised Auditor (TAPA trained/approved)?

Why did we need Self-Certification for TAPA Standards?

How are costs reduced for Logistics Service Providers?

As Self-Certification is a lower cost option for Logistics Service Providers, why should FSR A&B and TSR 1&2 still be considered?

Can you provide me with some advice on how to get started with Self-Certification and explain what’s involved?

I see three different types of audits mentioned in the Standards. Can you explain what they are for?

Who can qualify as an Authorised Auditor (AA)?

What are the requirements for the LSP/ Applicant person who is conducting the interim self audits between certification audits? Must this person be an Authorised Auditor (TAPA trained/approved)?

My business is too small to have our own TAPA-trained Authorised Auditor. For selfcertification, the TAPA Standards state that “An Authorised Auditor can be an internal employee/associate, trained and authorised by TAPA as an FSR/TSR/PSR Authorised Auditor”. Can you explain what you mean by “associate” and how I could use this option?

I have been approached by a security company offering to complete my TAPA self-certification audits. Does TAPA authorise third-party auditing/inspection companies to complete self-certification for the TAPA Standards?

How many waiver requests does TAPA EMEA receive and how many are approved?

What advice can you give to ensure a waiver request is likely to be approved?

When waiver requests are denied, what can the LSP/Applicant do to avoid their certification audit failing?

Who reviews and approves the waivers in EMEA?

If I have a need for the same waiver at more than one location, do I need to submit a waiver for each one?

Exactly what is GDPR?

The TAPA Standards require certain records to be made and stored to help provide deterrents and maintain a robust audit trail should a security incident require further investigation. Is it no longer possible to follow these requirements in the EU?

The TAPA Standards require certain records to be made and stored to help provide deterrents and maintain a robust audit trail should a security incident require further investigation. What is the best approach to avoiding claims that the TAPA Standards conflict with the EU GDPR?

Should there be a conflict between the GDPR company policy and TAPA’s requirements, what should I do?

We consider CCTV images are personal data. TAPA requires that I keep the recorded images for 30 days. How can I achieve this and meet TAPA and GDPR requirements?

I heard that truck GPS data is considered personal data as it tracks driver movements? Does TAPA have a view on this?

It has been mentioned at TAPA meetings that the Association will be looking into “modular” standards. Are there any updates on what’s happening?

If I have any comments on the existing or future TAPA Standards, who should I contact?

When will work on updating the Standards begin?

I have some comments to share on the existing Standards that may help improve the next revision. Who should I send these to and what happens with the request?

Who should pay the costs to meet TAPA Standards?

Why is this clause in the TAPA Standards?

Some of my facilities do not use English language. Does the clause below mean I can translate the standards into local languages?

Can you explain the slightly different comments I found on use of subcontractors in the TAPA Standards?

If I get self-certified, no-one checks if my audit is accurate. I could say I meet all the requirements without doing anything. Is this a weakness in the scheme?

My company is using more self certifications to prove we are TAPA compliant to our customers. It’s really working out well for us. Why can’t I use self-certification for the higher security levels of TAPA’s Security Standards?

Please explain the reasons why Logistics Service Providers seek to obtain TAPA certification?

If I wanted to promote my TAPA certification to my customers, what advice can TAPA give me?

If we wanted to incorporate TAPA branding into our own promotional material, can TAPA help us with this?

I know some Logistics Service Providers who have an agreement with their customers that they must be TAPA compliant. What does this mean? Is it a benefit option?

I know some Logistics Service Providers who have an agreement with their customers that they must be TAPA compliant. What does this mean? Is it a benefit option?

How will TAPA introduce control measures to address supply chain cyber threats?

If the 2020 versions of the Standards are ready now, why can’t I use them to be certified before 1 July?

I want to prepare for TSR 2020 certification. Where can I find the audit forms?

I want to check my operation against the new FSR/TSR Standards to see which changes are needed and to identify any additional costs. I know the official TAPA audit templates are not available yet, so how would you suggest I check my compliance status?

I note there is a new addition in the FSR for ‘IT and Cyber Security Threat’. It is good to see TAPA addressing this important topic. Why is this an optional and not mandatory requirement when surely in the world we live in today, the protection of our networks is a core requirement?

When TAPA introduced the 2017 versions of the Security Standards, you produced a comparison chart for the previous 2014 versions to highlight the differences in the new Standards. Does the same exist for the 2020 version?

The new cyber requirements in both FSR and TSR 2020 are only optional. Based on the increasing awareness and discussions regarding cyber risks, should this be changed from optional to mandatory?

We are already TSR and FSR certified. Will the new formats increase my costs and the number of requirements I need to be compliant with?

Can I use and gain certification before the 1 July introduction of FSR/TSR 2020?

How and when will I get copies of the draft FSR and TSR Security Standards?

How can I provide feedback to TAPA if I have any comments on the updated FSR/TSR?

If I need help to understand the new Standards, who can I contact?

When will the new FSR and TSR Standards come into force?

Can I still use the FSR/TSR 2017 versions after 1 July 2020?

What should I do to prepare for the new Standards?

After obtaining FSR Level A certification a year ago, I recently received a reminder to complete and submit a self-audit to the audit body. Can you explain what is required and the purpose of these audits?

My company uses a different audit body to the ones TAPA has approved. Why can’t I use the same audit body?

I’d like to see the updated 2020 Standards as soon as possible so I can assess any changes I may need to make to my operations. When will they be available for review?

As I make preparation plans for FSR and TSR 2020, will TAPA be available to help me make decisions on the best way to transition to the new versions?

Will TAPA be publishing the details on the changes between the old and new versions of the Standards?

I hear about Standards being published this year but they don’t come into effect until July 2020. Why the delay? Is there a schedule we need to know about?

Who can I contact if I have concerns about my existing TAPA certification being impacted by the release of revised TAPA Standards?

How will TAPA provide more information and support to existing TAPA Standards certificate holders to help them plan their transition to the new revision of the Standards?

How will TAPA introduce control measures to address supply chain cyber threats?

Please click on the above image to download our latest conference video from Dublin!

New TAPA Brochure

Raising security standards within the supply chain.