Cloud 101CircleEventsBlog
Join CSA's Virtual FinCloud Security Summit to explore cloud security solutions, emerging fintech trends, and best practices for secure, compliant financial services.

Download Publication

CSA Code of Conduct Gap Resolution and Annex 10 to the CSA Code of Conduct for GDPR Compliance
CSA Code of Conduct Gap Resolution and Annex 10 to the CSA Code of Conduct for GDPR Compliance
Who it's for:
  • Cloud service providers that wish to demonstrate compliance with the GDPR and CCPA
  • Cloud customers that need to evaluate the level of compliance offered by CSPs

CSA Code of Conduct Gap Resolution and Annex 10 to the CSA Code of Conduct for GDPR Compliance

Release Date: 06/21/2023

This bundle from the CSA Privacy Level Agreement Working Group includes:
  • CSA Code of Conduct Gap Resolution spreadsheet
  • Annex 10 to the CSA Code of Conduct for GDPR Compliance report
These documents are the result of a mapping exercise conducted between the California Consumer Privacy Act (CCPA), the EU’s General Data Protection Regulation (GDPR), and CSA’s Code of Conduct for GDPR Compliance (CoC). This mapping exercise singled out some CCPA provisions that were not fully covered by the CoC, which may create obligations for cloud service providers hoping to achieve CCPA compliance. 

Together, the CoC Gap Resolution and Annex 10 to the CoC set out additional controls that allow cloud service providers to leverage the CoC as a means to achieve and demonstrate CCPA compliance. Furthermore, in line with the overall goals of the CoC, Annex 10 allows cloud customers to assess cloud service providers’ level of compliance with both the GDPR and the CCPA, allowing them to make informed engagement decisions.


Download this Resource

Prefer to access this resource without an account?
Download the publication. Download the presentation.

Bookmark
Share
Related resources
Zero Trust Guidance for Critical Infrastructure - Japanese Translation
Zero Trust Guidance for Critical Infrastructure...
Context-Based Access Control for Zero Trust
Context-Based Access Control for Zero Trust
Zero Trust Guidance for Small and Medium Size Businesses (SMBs)
Zero Trust Guidance for Small and Medium Size B...
The EU AI Act: A New Era of AI Governance Began August 1st
The EU AI Act: A New Era of AI Governance Began August 1st
Published: 01/15/2025
Secrets & Non-Human Identity Security in Hybrid Cloud Infrastructure: Strategies for Success
Secrets & Non-Human Identity Security in Hybrid Cloud Infrastructur...
Published: 01/14/2025
The Emerging Cybersecurity Threats in 2025 - What You Can Do To Stay Ahead
The Emerging Cybersecurity Threats in 2025 - What You Can Do To Sta...
Published: 01/14/2025
Next-Gen Cybersecurity with AI: Reshaping Digital Defense
Next-Gen Cybersecurity with AI: Reshaping Digital Defense
Published: 01/10/2025
Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training