A self-assessment that can be completed by a cloud service provider to evaluate the compliance of its services to the GDPR. After the self-assessment is published on the Registry, it will remain valid for 1 year. The Self-Assessment requires the publication of a (1) Code of Conduct Statement of Adherence and (2) the PLA Code of Practice Template and must be updated when a change is made to company policies or practices that affect the assessed service.
Following the acquisition of Trustpage by Vanta, the information collected by Trustpage is now governed by Vanta's Privacy Policy.