Tencent Cloud has awarded "Candidate" mark of CISPE Code of Conduct, which means the cloud service provider has fullfilled the self-assessment against the CISPE Code of Conduct requirements. The CISPE Code of Conduct is the first pan-European sector-specific code for cloud infrastructure service providers under Article 40 of the European Union’s General Data Protection Regulation (GDPR) receiving a green light from the European Data Protection Board (EDPB). It helps organisations across Europe accelerate the development of GDPR compliant cloud-based services for consumers, businesses, and institutions.
During the self-assessment process, based on the current status of Tencent Cloud, comprehensive descriptions and corresponding evidences were submitted for self-certification of Tencent Cloud's compliance at the document system and implementation level. The assessment included a total of 18 domains, such as Processing Personal Data Lawfully, Contractual terms and conditions of the CISP's services, Security, Transfer of personal data to third countries, Sub-processing, Demonstrating compliance, Data Subject Rights, CISP personnel, Data breach, Deletion or return of personal data, Record of Processing, etc.