The EU Cloud CoC in a Nutshell
- Approved Code of Conduct pursuant Art. 40 GDPR
- Providing sufficient guarantees of compliance for processing activities (Art. 28 GDPR)
- Covering the full spectrum of cloud services (XaaS)
- Independently and externally monitored


The Code’s Compliance Levels
Acquire a formal GDPR Compliance Mark, significantly enhancing your current conformity statements.
Support your adherence process by leveraging existing efforts and attestations.
Choose the compliance level which fits best for your company and Customer needs.

Why joining the EU Cloud CoC?
- Transparently communicate to your Customers how your privacy obligations are met
- Underpin your day-to-day compliance exercises
- Foster accountability and build trust in your cloud products and services
- Minimize legal uncertainties and mitigate your risks (Art. 83 GDPR)
- Boost your market position, while utilizing a cost-effective framework with a tailored pricing scheme that guarantees accessibility for all-size companies
Third Country Module Initiative
The EU Cloud CoC is designing an additional module to provide an effective safeguard for international data flows post-Schrems II.
Join the Code and contribute to the development of this forefront initiative.

Recent News
A Deal on the Digital Services Act
April 2022 brought up a deal on another major proposal under the EU’s digital policy umbrella.
SCOPE Europe on the Serious Privacy Podcast
Make sure you listen to the snippets collected from us and several privacy colleagueas throughout the IAPP Global Privacy Summit 2022 in Washington…
The EU Cloud CoC is joining the 2022 CPDP Conference
On Monday, the 23rd of May, SCOPE Europe will take the stage at a panel hosted by Workday.
Members and Supporters






















