At level one organizations can submit one or both of the security and privacy self-assessments. These are based off of the Cloud Controls Matrix and the CSA Code of Conduct for GDPR Compliance.
https://cloudsecurityalliance.org/star/registry/services/sharevent
Download file