Guidelines 01/2019 on Codes of Conduct and Monitoring Bodies under the GDPR

SECTION 2  DEFINITIONS

‘Accreditation’ refers to the ascertainment that the proposed monitoring body meets the requirements set out in Article 41 of the GDPR to carry out the monitoring of compliance with acode of conduct. This check is undertaken by the supervisory authority where the code is submitted for approval (Article 41(1)). The accreditation of a monitoring body applies only for a specific code.

‘Code Owners’ refers to associations or other bodies who draw up and submit their code and they will have an appropriate legal status as required by the code and in line with national law.

‘CompSA’ refers to the Supervisory Authority which is competent as per Article 55 of the GDPR.

‘Monitoring body’ refers to a body/committee or a number of bodies/committees (internal or external to the code owners) who carry out a monitoring function to ascertain and assure that the code is complied with as per Article 41.

‘Concerned SAs’ shall have the same meaning as per Article 4 (22) of the GDPR

‘National code’ refers to a code which covers processing activities contained in one Member State.

‘Transnational code’ refers to a code which covers processing activities in more than one Member State.