Privacy Pact

Art. 28 of the European General Data Protection Regulation (Regulation 679/2016 – “GDPR”) requires that “controller shall use only processors providing sufficient guarantees” to respect and comply with the GDPR. Privacy Pact is the most efficient way for companies and processors to contractually commit to abide to the rules and obligations of the GDPR and to communicate their commitment, regardless of their place of establishment and/or activity. The European Regulation requires that all legal entities that process personal data collected in the European Union shall formally commit to respect the GDPR, regardless of their location.

The companies registered on Privacy Pact website have submitted a contractually binding commitment to respect the GDPR. It constitutes a formal obligation that companies must honour. It can be used by companies to demonstrate their commitment towards their business partners and their customers. Privacy Pact enables companies to unilaterally and publicly commit to respect the GDPR.  It can serve as a first step towards certification of compliance, such as  Europrivacy. For more information, visit:

Privacy Pact has been developed by experts in personal data protection in the context of the H2020 European Research programme. Its initial development has been funded by the European Union’s Horizon 2020 research and innovation programme and by the State Secretariat for Education, Research and Innovation of Switzerland. It has been further enhanced with blockchain technology. This online service is made available and managed by Archimede Solutions in cooperation with the European Center for Certification and Privacy (ECCP) in Luxembourg and the Istituto Italiano per la Privacy (IIP) in Italy.

Contact us