Guidelines 01/2019 on Codes of Conduct and Monitoring Bodies under the GDPR

Section 5.3  Processing Scope

23. The draft code must have a defined scope that clearly and precisely determines the processing operations (or characteristics of the processing) of personal data covered by it, as well as the categories of controllers or processors it governs. This will include the processing issues that the code seeks to address and provide practical solutions.