Certification is an external validation of compliance with specific standards. An accredited third-party auditor verifies that an organization has implemented required controls and processes.
Common certifications include ISO 27001 for information security, SOC 2 for service providers, and GDPR compliance verification, each demonstrating commitment to specific compliance requirements.