ATU-CPAC Registry and Verification Policy
Arab Trainers Union Council for Professional Accreditation and Certification
Version 1/2026
Effective Date: 1 June 2026
Controlled Policy Document
1. Document Control
Document Title: ATU-CPAC Registry and Verification
Policy
Document Owner: ATU-CPAC Digital Verification and Registry Committee
Issuing Authority: Arab Trainers Union
Policy Authority: ATU-CPAC Governing Council
Approval Authority: Arab Trainers Union Board of Directors, where
required
Effective Date: 1 June 2026
Review Date: Every three years, or earlier where required
Applicability: ATU-CPAC, Arab Trainers Union, approved providers,
accredited providers, authorized assessment centers, certified professionals,
candidates, learners, partners, registry users, and verification stakeholders
2. Introduction
The Arab Trainers Union Council for Professional
Accreditation and Certification, referred to as ATU-CPAC, is a specialized
council operating within the Arab Trainers Union.
ATU-CPAC regulates, monitors, quality assures, and verifies
professional accreditation, professional certification, assessed training
certificates, provider status, program approval, and related registry records
under the authority of the Arab Trainers Union.
All certificates, professional certifications, assessed
certificates, accreditation certificates, digital badges, registry
confirmations, and verification records governed by ATU-CPAC are issued in the
name and under the authority of the Arab Trainers Union.
The registry and verification system provides an official
method to confirm the authenticity, status, scope, validity, and expiry of
ATU-issued credentials and ATU-CPAC-governed approvals.
3. Purpose
This policy sets out how ATU-CPAC shall create, maintain,
update, protect, correct, publish, and verify registry records.
The policy aims to:
- Protect
the credibility of ATU-issued certificates and professional
certifications.
- Provide
reliable verification of providers, programs, certificates, and certified
professionals.
- Prevent
misuse, falsification, alteration, or misrepresentation of credentials.
- Ensure
registry information is accurate, secure, current, and traceable.
- Support
public trust through transparent verification.
- Define
responsibilities for registry data entry, approval, correction,
suspension, and removal.
- Support
quality assurance, accreditation, certification, renewal, and compliance
decisions.
4. Scope
This policy applies to registry and verification activities
related to:
- Approved
providers.
- Accredited
providers.
- Premier
accredited providers.
- Authorized
assessment centers.
- Accredited
training programs.
- Accredited
professional programs.
- Authorized
delivery partners.
- Professional
certifications.
- Assessed
training certificates.
- Certificates
of achievement.
- Approved
trainers.
- Approved
assessors.
- Approved
IQAs and EQAs where applicable.
- Digital
badges.
- QR-code
verification.
- Certificate
numbers.
- Registry
status updates.
- Partner-endorsed
or jointly supported credentials where applicable.
- Arab
Experts Portal profiles where applicable.
5. Registry and
Verification Principles
ATU-CPAC registry and verification shall be guided by the
following principles.
5.1 Accuracy
Registry records shall be correct, complete, verified, and
based on approved source documents.
5.2 Authenticity
Verification shall confirm whether a certificate,
certification, provider status, or program approval is genuine and issued under
the authority of the Arab Trainers Union.
5.3 Transparency
Approved public registry information shall be clear and
accessible to learners, employers, providers, partners, and stakeholders.
5.4 Security
Registry systems, certificate numbers, QR codes, digital
badges, and verification links shall be protected against unauthorized access,
misuse, alteration, or fraud.
5.5 Data Protection
Personal data and confidential records shall be processed
only for approved purposes and protected according to applicable data
protection requirements.
5.6 Traceability
Each registry entry shall be linked to source evidence,
approval records, certificate records, and status history.
5.7 Timeliness
Registry records shall be created, updated, corrected,
suspended, expired, withdrawn, or revoked within reasonable timeframes.
5.8 Controlled Access
Only authorized persons may create, edit, approve, or remove
registry records.
5.9 Public Trust
The registry shall protect the reputation of ATU, ATU-CPAC,
providers, certified professionals, and valid credential holders.
6. Registry
Categories
ATU-CPAC may maintain internal and public registry records
for the following categories:
- Provider
accreditation registry.
- Professional
certification registry.
- Certificate
of achievement registry.
- Accredited
program registry.
- Authorized
assessment center registry.
- Authorized
delivery partner registry.
- Approved
trainer registry.
- Approved
assessor registry.
- Approved
IQA and EQA registry where applicable.
- Partner-endorsed
credential registry.
- Suspended,
expired, withdrawn, revoked, or under-review records where publication is
legally and operationally permitted.
7. Registry Record
Fields
Registry records may include the following information,
according to credential type and approved disclosure rules.
7.1 Provider Registry Fields
Provider registry records may include:
- Provider
name.
- Country.
- Accreditation
category.
- Approved
scope.
- Approved
programs.
- Approved
delivery mode.
- Certificate
or accreditation number.
- Issue
date.
- Expiry
date.
- Status.
- Conditions
or limitations where applicable.
- Verification
link or QR code.
7.2 Professional Certification Registry Fields
Professional certification registry records may include:
- Certified
professional name.
- Certification
title.
- Certification
level.
- Scope
or specialization.
- Certificate
number.
- Issue
date.
- Expiry
date.
- Status.
- Country.
- Digital
badge status where applicable.
- Verification
link or QR code.
7.3 Program Registry Fields
Program registry records may include:
- Program
title.
- Program
category.
- Approved
provider.
- Approved
level.
- Approved
delivery mode.
- Approval
number.
- Issue
date.
- Expiry
date.
- Status.
- Conditions
or limitations where applicable.
7.4 Certificate Registry Fields
Certificate registry records may include:
- Certificate
holder name.
- Certificate
title.
- Certificate
type.
- Program
title.
- Provider
name where applicable.
- Certificate
number.
- Issue
date.
- Expiry
date where applicable.
- Status.
- Verification
link or QR code.
8. Registry Status
Categories
Registry status may include:
- Active
The record is valid and currently recognized within the approved scope. - Conditional
The record is valid subject to defined conditions. - Pending
The record is awaiting final approval, evidence, quality assurance, payment confirmation, or certificate release. - Expired
The validity period has ended and renewal has not been completed. - Suspended
The record is temporarily restricted due to investigation, non-compliance, risk, or pending corrective action. - Withdrawn
The credential or approval has ended due to voluntary withdrawal, non-renewal, or failure to maintain requirements. - Revoked
The credential or approval has been cancelled due to serious breach, fraud, malpractice, misuse, or reputational risk. - Under
Review
The record is being reviewed due to complaint, appeal, correction request, quality assurance concern, or compliance issue. - Replaced
The record has been replaced by a corrected or updated version.
9. Verification
Methods
ATU-CPAC may use one or more approved verification methods.
Verification methods may include:
- Online
registry search.
- Certificate
number search.
- QR-code
verification.
- Digital
badge verification.
- Official
verification letter.
- Employer
verification request.
- Provider
status verification.
- Partner
verification confirmation where applicable.
- Arab
Experts Portal profile verification where applicable.
Verification shall confirm only the information approved for
disclosure.
10. Certificate
Numbering and Digital Verification Controls
Each ATU-issued certificate or certification governed by
ATU-CPAC shall have a controlled identification number.
Certificate numbering controls shall include:
- Unique
certificate number.
- Link
to certificate holder or provider record.
- Link
to certificate type.
- Link
to issue date.
- Link
to expiry date where applicable.
- Link
to status.
- Version
control for corrected certificates.
- Prevention
of duplicate numbering.
- Audit
trail for changes.
- Secure
verification link or QR code where applicable.
QR codes and digital badges must connect only to approved
verification systems and must not be altered, copied, reused, or issued outside
approved procedures.
11. Registry Entry
Approval
A registry record may only be created after the required
approval process is completed.
Before creating an active registry entry, ATU-CPAC shall
verify:
- Identity
of the certificate holder or provider.
- Approved
certificate, certification, provider, or program decision.
- Correct
title and category.
- Correct
scope and level.
- Correct
issue date.
- Correct
expiry date where applicable.
- Correct
certificate or approval number.
- Completion
of required assessment or accreditation requirements.
- IQA
and EQA confirmation where required.
- Authorized
signatory approval where applicable.
- Payment
confirmation where applicable.
- Partner
approval where applicable.
12. Registry Updates
and Corrections
Registry records shall be updated when status, scope,
validity, or information changes.
Updates may be required due to:
- Renewal.
- Expiry.
- Suspension.
- Withdrawal.
- Revocation.
- Reinstatement.
- Scope
change.
- Name
correction.
- Certificate
replacement.
- Appeal
outcome.
- Quality
assurance finding.
- Registry
error.
- Partner
requirement.
- Data
protection request.
Corrections shall be documented, approved, and traceable. No
unauthorized person may change registry data.
13. Registry Error
Management
Where a registry error is identified, ATU-CPAC shall:
- Record
the error.
- Confirm
the source of the error.
- Secure
supporting evidence.
- Review
the impact.
- Approve
correction.
- Correct
the registry record.
- Update
certificate or verification data where required.
- Notify
affected parties where appropriate.
- Record
the correction history.
- Review
whether corrective action is required.
Errors affecting certificate integrity or public trust shall
be escalated immediately.
14. Public Registry
Information
ATU-CPAC may publish registry information where disclosure
is approved and lawful.
Public registry information may confirm:
- Whether
a provider, program, certificate, or professional certification is valid.
- The
title and category of the credential.
- The
approved scope or specialization.
- The
issue date.
- The
expiry date where applicable.
- The
current status.
- Conditions
or limitations where appropriate.
Sensitive personal data, assessment results, internal
reports, complaints, appeals, and investigation records shall not be published
unless legally required or formally approved.
15. Confidential
Registry Information
Some registry information shall remain internal and
confidential.
Confidential registry information may include:
- Candidate
identity documents.
- Assessment
evidence.
- Scores
and detailed results.
- IQA
and EQA records.
- Complaints
and appeals.
- Investigation
records.
- Malpractice
evidence.
- Internal
decision notes.
- Personal
contact details.
- Data
protection records.
- Partner-restricted
information.
Access to confidential registry information shall be limited
to authorized persons with a valid operational need.
16. Data Protection
and Privacy
ATU-CPAC shall protect personal data and registry
information.
Data protection controls shall include:
- Lawful
collection and processing.
- Purpose
limitation.
- Data
minimization.
- Secure
storage.
- Controlled
access.
- Data
accuracy checks.
- Retention
and disposal rules.
- Breach
reporting.
- Consent
management where required.
- Protection
of candidate and professional records.
- Secure
sharing with partners where approved.
- Response
to valid correction or access requests.
Providers and partners must also protect registry-related
data and must not disclose certificate or candidate information without
authorization.
17. Use and Misuse
of Verification Records
Registry and verification records must be used honestly and
only for approved purposes.
Misuse may include:
- Altering
a certificate or verification record.
- Using
another person’s certificate number.
- Claiming
active status after expiry.
- Claiming
certification outside the approved scope.
- Claiming
provider accreditation outside approved category.
- Copying
or falsifying a QR code.
- Creating
false digital badges.
- Misusing
ATU or ATU-CPAC logos.
- Publishing
misleading verification screenshots.
- Claiming
government licensing or academic equivalence without authority.
- Using
suspended, withdrawn, or revoked status as active.
Misuse may result in correction notice, suspension,
withdrawal, revocation, registry update, public clarification, or referral to
ATU leadership or legal channels.
18. Verification
Requests
ATU-CPAC may receive verification requests from employers,
providers, partners, government entities, educational institutions, certificate
holders, or the public.
Verification requests shall be handled according to:
- Approved
verification method.
- Data
protection requirements.
- Identity
or authorization checks where required.
- Approved
disclosure rules.
- Response
timeframe.
- Record
of request and response.
- Applicable
fees where approved.
ATU-CPAC shall not disclose confidential personal,
assessment, or investigation information through public verification.
19. Registry and
Verification Responsibilities
19.1 Responsibilities of ATU-CPAC
ATU-CPAC shall:
- Maintain
registry and verification procedures.
- Control
certificate numbering.
- Maintain
registry accuracy.
- Approve
registry entries and updates.
- Protect
registry data.
- Monitor
misuse of certificates and verification records.
- Correct
registry errors.
- Update
status after suspension, withdrawal, revocation, renewal, or appeal.
- Maintain
audit trails.
- Support
public trust through reliable verification.
19.2 Responsibilities of Providers
Providers shall:
- Submit
accurate learner and certificate data.
- Verify
spelling, identity, program title, and completion evidence before
submission.
- Submit
certificate requests only for eligible candidates.
- Report
errors immediately.
- Protect
candidate and certificate data.
- Avoid
misleading registry or accreditation claims.
- Stop
using expired, suspended, withdrawn, or revoked status.
- Cooperate
with registry audits and verification checks.
19.3 Responsibilities of Certified Professionals and
Certificate Holders
Certified professionals and certificate holders shall:
- Use
only valid certificate and certification titles.
- Use
registry status honestly.
- Report
errors in their records.
- Avoid
altering certificates, badges, QR codes, or verification links.
- Stop
using expired, suspended, withdrawn, or revoked credentials.
- Cooperate
with verification or investigation requests where required.
19.4 Responsibilities of Partners
Partners shall:
- Use
registry and verification data only as authorized.
- Protect
shared data.
- Follow
approved branding and verification rules.
- Report
suspected misuse.
- Avoid
public claims beyond approved agreement scope.
20. Registry Audit
and Quality Assurance
ATU-CPAC shall conduct registry quality assurance to confirm
accuracy and integrity.
Registry audit may include:
- Certificate
number checks.
- Duplicate
record checks.
- Name
and title accuracy review.
- Issue
and expiry date review.
- Status
review.
- Scope
accuracy review.
- Provider
record review.
- Professional
certification record review.
- Digital
badge review.
- QR-code
functionality check.
- Registry
correction log review.
- Suspended
and revoked records review.
- Public
verification testing.
- Data
access log review.
Registry audit findings shall be used for corrective action
and continuous improvement.
21. Suspension,
Withdrawal, Revocation, and Registry Status
Where a certificate, certification, provider approval,
program approval, or partner status is suspended, withdrawn, or revoked, the
registry shall be updated according to approved procedures.
Registry updates shall include:
- Status
change.
- Effective
date.
- Reason
category where appropriate.
- Scope
affected.
- Conditions
for reinstatement where applicable.
- Public
visibility decision.
- Internal
evidence record.
- Appeal
status where applicable.
ATU-CPAC may publish limited status information where
necessary to protect public trust and prevent misuse.
22. Appeals and
Correction Requests
Certificate holders, certified professionals, providers, or
partners may submit a correction request or appeal related to registry status.
Requests may relate to:
- Name
spelling.
- Certificate
number.
- Issue
date.
- Expiry
date.
- Certification
title.
- Provider
status.
- Scope
information.
- Incorrect
suspension or expiry.
- Registry
omission.
- Verification
link error.
Appeals should be submitted within 15 days from notification
of the registry-related decision unless another approved procedure applies.
All appeals shall be reviewed impartially by persons not
involved in the original decision.
23. Partner Registry
and Joint Verification
Where ATU-CPAC credentials involve international, regional,
or professional partners, registry and verification shall follow approved
agreement conditions.
Partner registry requirements may include:
- Joint
verification statement.
- Partner
reference number.
- Partner
logo or endorsement rules.
- Data
sharing limitations.
- Partner
confirmation before publication.
- Partner
certificate wording rules.
- Partner
status update procedures.
- Joint
suspension or withdrawal notice where applicable.
No partner name, logo, endorsement, approval number, or
registry link may be used unless formally authorized.
24. Records
Retention
Registry and verification records shall be retained
according to ATU policy, ATU-CPAC requirements, legal requirements, and partner
requirements where applicable.
Records may include:
- Certificate
data.
- Registry
entries.
- Verification
requests.
- Status
changes.
- Correction
requests.
- Appeal
outcomes.
- Audit
records.
- QR-code
records.
- Digital
badge records.
- Partner
verification records.
- Suspension
and revocation records.
- Data
protection records.
Records shall be stored securely and disposed of only
through approved procedures.
25. Review of Policy
This policy shall be reviewed every three years or earlier
where required due to:
- ATU
Board decision.
- Legal
or regulatory change.
- ATU-CPAC
standards update.
- Registry
audit findings.
- Data
protection requirements.
- Certificate
misuse cases.
- Verification
system changes.
- Partner
requirements.
- Complaints
or appeals trends.
- Digital
badge or QR-code incidents.
- Stakeholder
feedback.
- Operational
need.
26. Definitions
|
Term |
Meaning |
|
Arab Trainers
Union |
The issuing
authority for ATU certificates, professional certifications, accreditation
certificates, and related credentials. |
|
ATU-CPAC |
Arab Trainers
Union Council for Professional Accreditation and Certification, a specialized
council within ATU responsible for regulation, quality assurance, registry,
and verification. |
|
Registry |
The official
record used to verify provider, program, certificate, certification,
professional, or partner status. |
|
Verification |
The process
of confirming authenticity, status, scope, issue date, expiry date, and
validity of a credential or approval. |
|
Certificate
Number |
A unique
number assigned to an ATU-issued certificate or certification. |
|
QR Code |
A digital
code linked to an approved verification record. |
|
Digital Badge |
A controlled
digital representation of a credential that may link to verification data. |
|
Active Status |
A registry
status showing that the credential or approval is currently valid. |
|
Suspended
Status |
Temporary
restriction due to risk, investigation, or non-compliance. |
|
Withdrawn
Status |
Ending of
status due to expiry, voluntary withdrawal, non-renewal, or failure to
maintain requirements. |
|
Revoked
Status |
Cancellation
due to serious breach, fraud, malpractice, misuse, or reputational risk. |
|
Registry
Correction |
Approved
update to correct inaccurate registry information. |
|
Public
Registry |
Registry
information approved for public verification. |
|
Confidential
Registry Data |
Data
restricted to authorized internal use only. |
Final Policy
Statement
ATU-CPAC Registry and
Verification Policy exists to protect the authenticity, credibility, and public
trust of credentials issued under the authority of the Arab Trainers Union.
Through accurate records,
controlled certificate numbers, secure QR codes, verified registry entries,
responsible data protection, misuse prevention, and transparent status updates,
ATU-CPAC ensures that providers, programs, certificates, and professional
certifications can be trusted and verified across Arab countries.



