Cross Border Transfer Mechanisms: Codes of Conduct
Codes of Conduct are another mechanism that can be used in transferring Personal data out of the EU to an area that is deemed not have adequate level of protection. In this article, I will explain how they created, complied with and are enforced. (1) Who Responsible for drawing up codes of conduct (a) Governments and regulators can encourage the drawing up of codes of conduct. (b) Codes of conduct may be created by trade associations or representative bodies. (c) Codes should be prepared in consultation with relevant stakeholders, including individuals (Recital 99). (d) Codes must be approved by the relevant supervisory authority; and where the processing is cross-border, the European Data Protection Board (the EDPB). (e) Existing codes can be amended or extended to comply with the requirements under the GDPR. (2) Codes of conduct may cover topics such as: (a) ...