| Warning |
|---|
Come back to this page and make sure links point properly to this wiki, not the old wiki |
| Tip | ||
|---|---|---|
| ||
The Data protection Code of Conduct v2 describes an approach to meet the requirements of the EU Data Protection Directive GDPR in federated identity management. The Data protection Code of Conduct defines behavioral rules for Service Providers which want to receive user attributes from the Identity Providers managed by the Home Organisations. It is expected that Home Organisations are more willing to release attributes to Service Providers who manifest conformance to the Data protection Code of Conduct. For more information, see Introduction to |
REFEDS Data Protection Code of Conduct ver 2.
Normative Documents
Data Protection0
Normative documents
- Code of Conduct 2.0 for Service Providers in EU/EEA
- SAML 2 Profile for the Data Protection Code of Conduct
Non-normative, Informational Documents
Supporting materials
- Privacy Notice Template
- Handling non-compliance
- Good practice for Home Organisations
- How the Home Organisation should inform the End User
Cookbook
- Recipe for a Service Provider
- Recipe for a Home Organisation
- Recipe for a Federation Operator
Tools
License to the documents above is granted under the Creative Commons BY-SA 3.0 license.
Work in progress
and resources
- eduGAIN entity browser to check SPs/IdPs using the CoCo in eduGAIN (TBD: update to support CoCo2)
- Monitoring tool to monitor eduGAIN SPs' CoCo compliance (TBD: update to support CoCo2)
- Test SP to test IdPs' attribute release (TBD: update to support CoCo2)
Recent space activity
| Recently Updated | ||||||||
|---|---|---|---|---|---|---|---|---|
|
Space contributors
| Contributors | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|