GDPR Home

Resources

News

Public Registry

Glossary

Working Group

Resources

Whitepaper

Cloud Security Alliance

Cloud Security Alliance Code of Conduct for GDPR Compliance

CSA Code of Conduct for GDPR Compliance provides a consistent and comprehensive framework for complying with the EU’s GDPR. The CSA Code of Conduct for GDPR Compliance is designed to be an appendix to a Cloud Services Agreement to describe the level of privacy protection that a Cloud Service Provider will provide.

Get this resource

 
Whitepaper

Cloud Security Alliance

PLA Code of Practice (CoP) Template – Annex 1

CSA PLA Code of Conduct for GDPR Compliance provides a consistent and comprehensive framework for complying with the EU’s GDPR. The CSA PLA Code of Conduct for GDPR Compliance is designed to be an appendix to a Cloud Services Agreement to describe the level of privacy protection that a Cloud Service Provider will provide.

Get this resource

 
Whitepaper

Cloud Security Alliance

Code of Conduct (CoC): Statement of Adherence Self-Assessment

CSA PLA Code of Conduct for GDPR Compliance provides a consistent and comprehensive framework for complying with the EU’s GDPR. The CSA PLA Code of Conduct for GDPR Compliance is designed to be an appendix to a Cloud Services Agreement to describe the level of privacy protection that a Cloud Service Provider will provide.

Get this resource

 
Whitepaper

Cloud Security Alliance

Code of Conduct (CoC): Statement of Adherence 3rd Party Certification

CSA PLA Code of Conduct for GDPR Compliance provides a consistent and comprehensive framework for complying with the EU’s GDPR. The CSA PLA Code of Conduct for GDPR Compliance is designed to be an appendix to a Cloud Services Agreement to describe the level of privacy protection that a Cloud Service Provider will provide.

Get this resource

 
Webinar

Sponsored By: McAfee

GDPR as Business Enabler — Fact or Fiction

In this webcast, Raj Samani, chief scientist, McAfee Fellow, and Emma Wright, commercial technology partner at Kemp Little discuss the findings of our study (description above) as well as pose the questions: Is the culture of your organization ready for GDPR? Do you have the right people, processes, and technology in place to adhere to data privacy and residency regulations? Will GDPR provide a competitive advantage or cause your business to suffer from brand damage?

Get this resource

 
Survey Report

Sponsored By: McAfee

Beyond the General Data Protection Regulation (GDPR)

Data residency insights from around the world

This study reveals the top data protection concerns and strategies of more than 800 senior business professionals from eight countries and a range of industries. Beyond the European Union’s General Data Protection Regulation (GDPR) and other regulatory developments, enterprises think data privacy can create competitive advantage. What drives their decisions and investments in data management? Do they place their faith in cloud providers? Are they prepared to meet regulatory mandates and exceed customer expectations?

Get this resource

 
Article

Sponsored By: McAfee

GDPR: Data-Protection Soul-Searching, Not Just Compliance

Flora Garcia discusses five steps your organization can take when determining their responsibility in complying with GDPR. Additionally how the regulations presents an opportunity to review the robustness of your data protection program and to make changes that are good security, good business, and the right thing to do for healthy data-centric reform.

Get this resource

 
Article

Cloud Security Alliance

EU General Data Protection Regulation: Impact

GDPR Impact for Businesses Established Outside the EU and EEA

Get this resource

 
Article

Sponsored By: Schellman & Company

GDPR: What It Means for US-based Companies

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) was created to best uphold the fundamental personal information rights of individuals and further unify the member states of the EU in their endeavor to manage and protect data. The GDPR’s predecessor, the Data Protection Directive (the Directive) was in place to afford similar protections to data subjects.

Get this resource

 
Article

Sponsored By: Schellman & Company

Late out of the gate: Companies lagging on GDPR’s controller accommodation requirement

In less than a year’s time, the General Data Protection Regulation will succeed the EU’s Data Protection Directive. But many organizations striving to align with the new framework’s requirements are not properly weighing the gravity of its nuanced “controller accommodation” provision, or are avoiding it out of distress.

Get this resource