Procedure and technical measures in order to comply with General Data Protection Regulation 2016/679 are being more and more standardized through codes of conduct in several fields. Until now, there are not a code of conduct geared to Contract Research Organization (CRO). EUCROF has been working in a “Code of Conduct for Service Providers in Clinical Research” since 2017 and it has already been submitted for approval.

This code of conduct develops 237 requirements in order to comply with  GDPR in the 23 possible services provided by CROs detailed in the code. In order to a CRO can adhere to the code of conduct, CRO must deliver at least one service of those described and obtain the approval of a Supervisory Body called COSUP. Both, EUCROF members and non-members will be able to adhere to this code of conduct.

For more information: Code of Conduct for Service Providers in Clinical Research