Here are the relevant bits from the ICO:
Thank you for your email of 7 January 2013, regarding the displaying of your own CRB on your own personal website.
I understand from your email that you have had a CRB carried out as you are sub-contracted to another company. You are self-employed and have your own website. You ask whether you can display your CRB certificate on your website. I am not aware of any issues under the DPA which would prevent you from displaying your own CRB certificate on your website. I am also unaware of any other legislation which may prevent you from using your CRB in this way. However, to be certain it may be worth checking with the CRB that they have nothing that would stop this.
Its interesting the the ICO isn't sure as its their remit to be sure and not refer you to a third party like they've done. Also, its not your own certificate (although its about you).
So, I contacted the DBS who came back with this email.
Thank you for your email dated 31 January 2013 regarding your enquiry which has been passed to me for reply.
If you have had a CRB (now known as a DBS) check carried out our advice is that you should acknowledge on your website the fact that you have been CRB checked. However do not display the certificate and only show the certificate if a client asks to view it.
Under no circumstances should you use the DBS logo.The DBS and Disclosure logos are registered trademarks of the DBS in the UK held under licence number 2263661 and 2263664 respectively. As such the DBS does not license or permit the use of these trademarks by any other organisation on any printed or electronic media. Organisations that are registered can advertise the fact that they are registered with the DBS in a written statement but must not make use of the DBS logo. I have inspected your web site and it appears to be acceptable.
Now there's an anomally right there.
I trust you will find this information helpful.
I have read that a number of us have now been CRB’d/DBS’d so thought the proper stance from someone who knows rather than one person who is misguided was in order.
So whats your point regarding saying you're CRB checked? My point is that you people who do this create an uneccesary intrusive procedure to be taken as the norm, or something to be attained or aspire to. Also anyone who does legally require you to be CRB checked has to do it them selves and not rely on information that you personally provide, as such providing info like this in advance may mislead people to think they do not have to check you. They do have to check you.
In short your emails have found out that the ICO (the body responsible for information and data) doesn't know their arse from their elbow, so they've referred you to the data provider. The people who sell the data (aka CRB /DBS) say you should advertise the fact you've been checked by their services. Now there's a suprise !! They also say you shouldn't show it, you do and they say its fine!
It also states at the bottom of the certificate this.........very clearly........
The information contained in this Disclosure is confidential and all recipients must keep it
secure and protect it from loss or unauthorised access.
This Disclosure must only be used in accordance with the Criminal Record Burau's
(CRB).Code of Practice and.............Displaying certificates in the public domain isn't in the code of practice.
Now, given your new found knowledge, what advice do you have to offer your supportive mate..
http://rcpropertymaintenance.vpweb.co.uk/?prefix=wwwwho does display the disclosure logo?