Knowledge Hub

Privacy organisations & guidance

Authoritative organisations producing privacy, data protection, security and AI governance guidance — the bodies whose output shapes practice. Curated to the essentials, with links to official sources.

Regulatory & intergovernmental
Standards & security bodies
Professional & think tanks

Regulatory & intergovernmental
Body	What it produces	Source
EDPB	European Data Protection Board — GDPR guidelines, recommendations and opinions.	edpb.europa.eu
EDPS	European Data Protection Supervisor — opinions and EU institution guidance.	edps.europa.eu
ENISA	EU Agency for Cybersecurity — security & privacy engineering guidance.	enisa.europa.eu
OECD	Privacy Guidelines and cross-border data flow principles.	oecd.org
Council of Europe	Convention 108 / 108+ — the international data protection treaty.	coe.int
ICO	UK regulator guidance — accountability, AI, transfers, DSARs and more.	ico.org.uk
CNIL	French DPA — influential methodologies (e.g. DPIA, AI).	cnil.fr

Standards & security bodies
Body	What it produces	Source
ISO	International standards (27001, 27701, 42001, 31000…).	iso.org
NIST	US frameworks — Privacy Framework, CSF, AI RMF, SP 800-series.	nist.gov
CSA	Cloud Security Alliance — CCM, STAR, cloud guidance.	cloudsecurityalliance.org
BSI	British Standards Institution — BS 10012 and UK adoptions.	bsigroup.com

Professional bodies & think tanks
Body	What it produces	Source
IAPP	International Association of Privacy Professionals — certification, research, resources.	iapp.org
CIPL	Centre for Information Policy Leadership — policy thought leadership.	informationpolicycentre.com
FPF	Future of Privacy Forum — research on emerging privacy issues.	fpf.org
ISACA	Governance, audit and assurance guidance (COBIT, certifications).	isaca.org
ISF	Information Security Forum — Standard of Good Practice.	securityforum.org

Curated to the essentials and growing. Suggest an organisation — get in touch.