The EU Cloud CoC has offically been approved by the Belgian data protection Authority and is designed to become a sufficient guarantee pursuant Art. 28.5 GDPR. Providing a thorough list of essential requirements for Cloud Service Providers (CSP) in their role as processor, the latest version of the Code builds the very core of an entire, upcoming ecosystem.
Following Schrems II (C-311/18), European data protection community, and ultimately European business and industry is facing severe uncertainty. Both, legal experts and authorities, are considering European Court of Justice's ruling demanding, still not being able to particularly name what shall be adequate consequences to take.
The EU Cloud CoC General Assembly decided to take the challenge and is willing to draft an effective but accessible safeguard for third country transfers by means of a separate on-top module to the Art. 28.5 GDPR Code.