Code of conduct
Codes of conduct are one of the new compliance tools provided by the GDPR. They allow a harmonisation of practices at the level of a sector of activity.
What you need to know about the code of conduct
A code of conduct is a sectoral compliance tool that addresses the operational needs of professionals in their efforts to comply with the GDPR.
What shall a code of conduct contain?
The content of a code of conduct is framed by the GDPR and by guidelines adopted by the European Data Protection Board (EDPB) which provides practical explanations and examples.
The monitoring body designated by the code of conduct
The proper application of a code by the adherents is regularly verified. The CNIL recalls the role and obligations of the monitoring body.
How to get a code of conduct approved?
The drafts for national codes are examined and approved by the CNIL, whereas the draft for European codes are submitted to the European Data Protection Board (EDPB) for its opinion.
List of codes of conduct approved by the CNIL
In French
The approved codes of conduct meet the operational needs of professionals in the sectors concerned. The approval of the code of conduct is the result of a support process implemented by the CNIL.
Monitoring bodies accredited by the CNIL
In French
For a code of conduct to be operational, compliance with it must be monitored by a third party body. The bodies responsible for monitoring compliance with a code of conduct must be accredited for this purpose by the supervisory authority.
![[Infographics] Code of conduct](/sites/cnil/files/styles/associated_document/public/2023-06/infographie_le_code_de_conduite_en.jpg?itok=MsJLO7hL)