Representing cloud infrastructure service providers in Europe
The nature of cloud infrastructure services and different cloud deployment models (IaaS, PaaS, SaaS) are often misunderstood. This lack of understanding is fuelling “one size fit all” policies that are out of touch with industry requirements – and underpin the need for a united voice to represent the views of European cloud infrastructure service providers.
Welcome to CISPE. Our membership currently includes companies operating 16 European countries – and we’re growing. Join us.
What we do
- Strongly advocate cloud first public procurement policies
- Promote coherent EU-wide security requirements and technical standards
- Support comprehensive privacy requirements with a Code of Conduct
- Work to keep the EU cloud infrastructure market open, competitive and free from lock-in
- Prevent unjustified content monitoring obligations in the EU legal framework
CISPE Code of Conduct for Cloud Infrastructure Services
This data protection code anticipates enforcement of the European Union’s General Data Protection Regulation (GDPR). It aligns with the strict requirements laid out in the GDPR framework to help cloud infrastructure providers comply and so avoid penalties while also offering a framework to help customers and end users to select cloud providers and trust their services.
The CISPE Code of Conduct :
- An effective, easily accessed framework for complying with the EU’s GDPR
- Excludes the re-use of customer data
- Enables data storage and processing exclusively within the EU
- Identifies cloud infrastructure services suitable for different types of data processing
- Helps citizens to retain control of their personal and sensitive data
Current list of services declared under the CISPE Code of Conduct
Declare a service
Declaring a service under the CISPE Code of Conduct
How to complain to the CISPE Data Protection Committee
Request for Comments: CIOs and cloud providers invited to provide feedback on new draft Code of Conduct for switching cloud infrastructure providers and avoiding vendor lock-in
CISPE Statement to Members of IMCO Committee – in support of Amendment #208 // Free Flow of Data Regulation
Europe’s cloud infrastructure service providers ‘welcome GDPR and the protections it provides to cloud customers’
By providing the data above to CISPE (Cloud Infrastructure Services Providers in Europe, contact: firstname.lastname@example.org), the applicant gives consent that the CISPE and its bodies can use the data for membership registration, invoicing, sending information, receiving and handling complaints, other administrative tasks as well as communication with applicant and its other representatives within the scope of the official purposes of CISPE. CISPE will not use the data for any other purposes, including commercial activities, without the applicant’s prior and specific written consent. The data provided to CISPE by the applicant will be stored as long as the applicant is the member of CISPE or until the applicant opt out from further communication with CISPE. The applicant can at any time request to amend, change, port, delete or withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal, for personal data of the applicant obtained and stored by CISPE, by sending an e-mail to email@example.com. The applicant has the right at any time to seek the redress with the competent national data protection authority in Belgium. The data provided to CISPE is minimum required in order to perform the official purposes of CISPE and to communicate with the applicant.