The Data protection Code of Conducts enables safe attribute release between Identity and Service Providers within EU.
The Data protection Code of Conduct describes an approach to meet the requirements of the EU Data Protection Directive in federated identity management. The Data protection Code of Conduct defines behavioral rules for Service Providers which want to receive user attributes from the Identity Providers managed by the Home Organisations. It is expected that Home Organisations are more willing to release attributes to Service Providers who manifest conformance to the Data protection Code of Conduct.
(The Code of Conduct and all related documents in the REFEDs wiki are available under the Creative Commons BY-SA 3.0 license.)
Recipe for a Service Provider (update link)
Code of Conduct monitoring
Monitoring tool -- to check SPs' technical compliance
Test SP -- to test IdPs' attribute release
Code of Conduct training for federation operators
Training event (update link) at TNC2015 on the 15th of June 2015
Code of Conduct adoption in research communities
Endorsement letter (update link) for the Code of Conduct
CLARIN (update link) community
ELIXIR (update link) community
DARIAH (update link) community