Trust in cloud computing is essential.
It has never been more true than today to assert that without user trust, technology will not be able to advance to reach its full potential. At the core of building trust is robust data protection.
In this context, the EU Data Protection Code of Conduct for Cloud Service Providers plays an important role. Known by its abbreviated name EU Cloud Code of Conduct, it sets out clear requirements and recommends procedures to raise the level of data protection in cloud services, based on GDPR.
The EU Cloud Code of Conduct General Assembly worked on the EU Cloud Code of Conduct for years, developing a Code version aligned to GDPR which will be submitted to the supervisory authorities. Based on input by supervisory authorities and the Guidelines on Codes of Conduct and Monitoring Bodies by the European Data Protection Board, the Code has been designed to ensure a robust level of data protection and transparency, complemented by an independent monitoring function.
This is the first time that a single initiative allows a cloud provider to establish precisely which requirements they should meet under the GDPR, which assurances they get from existing certifications, and above all obtain the certainty that the gap between the GDPR and the certification is comprehensively filled. This is a crucial added value of the Code.