The EU Data Protection Code of Conduct for Cloud Service Providers (known by its abbreviated name EU Cloud Code of Conduct) sets out clear requirements and recommends procedures to raise the level of data protection in cloud services, based on GDPR. The current Cloud Code of Conduct helps cloud service providers demonstrate compliance with all the requirements of the GDPR, as well as an extensive range of data security demands. The EU Cloud Code of Conduct was approved by the Belgian Data Protection Authority, following a positive opinion of the EDPB, on 20 May 2021. TrustArc answers frequently asked questions about the EU Cloud Code of Conduct below.
What is the scope of the EU Cloud Code of Conduct?
The EU Cloud Code of Conduct is a self-regulation instrument that makes it easier to demonstrate compliance with the EU GDPR. It translates the legal requirements of the Regulation into operational controls that organisations can implement. The Code covers all aspects of the GDPR, from individual rights to data security, and also includes a governance section that is designed to support the effective and transparent implementation, management, and evolution of the Code. The intention of the EU Cloud Code of Conduct is to make it easier for cloud customers (particularly small and medium enterprises and public entities) to determine whether certain cloud services are appropriate for their designated purpose. In addition, the transparency created by the Code will contribute to an environment of trust and create a high default level of data protection in the European cloud computing market.
Who does the EU Cloud Code of Conduct apply to?
The Code applies to all Cloud Service Providers (CSPs) that have completed a ..
Support the originator by clicking the read the rest link below.