Codes of Conduct and Monitoring Bodies under the GDPR
Guidelines 01/2019 on Codes of Conduct and Monitoring Bodies under the GDPR
SECTION 6 CRITERIA FOR APPROVING CODES
32. Code owners will need to be able to demonstrate how their code will contribute to the proper application of the GDPR, taking account of the specific features of the various processing sectors as well as the specific requirements and obligations of the controllers or processors to whom it relates. There are a number of aspects to this overarching requirement. Code owners should be able to demonstrate that their draft code:
-
meets a particular need of that sector or processing activity,
-
facilitates the application of the GDPR,
-
specifies the application of the GPDR,
-
provides sufficient safeguards, and
-
provides effective mechanisms for monitoring compliance with a code.