WORKING PAPER • VOL. 1 • N° 2 • NOVEMBER 2014
by Paul de Hert, Vagelis Papakonstantinou, Irene Kamara
At a time when cloud computing industry is developing rapidly, mainly due to the flexibility and the cost minimization cloud computing offers, ISO and IEC developed a new standard on cloud computing to deal with issues of protection of PII and security of information. The new standard aims to address the down-sides of cloud computing and the concerns of the cloud clients, mainly the lack of trust and transparency, by developing controls and recommendations for cloud service providers acting as PII processors.
The article examines the strengths and weaknesses of the new standard, its added value to the cloud computing landscape and to data protection, as well as its relation to the European Personal Data Protection framework.
Keywords: cloud computing, standardisation, ISO, personal data, security, confidentiality
Copyright © Brussels Privacy Hub