WP12

WORKING

PAPERS

WORKING PAPER • VOL. 1 • N° 2 • NOVEMBER 2014

THE NEW CLOUD COMPUTING ISO/IEC 27018 STANDARD THROUGH THE LENS OF THE EU LEGISLATION ON DATA PROTECTION

 

by Paul de Hert, Vagelis Papakonstantinou, Irene Kamara

ABSTRACT

 

At a time when cloud computing industry is developing rapidly, mainly due to the flexibility and the cost minimization cloud computing offers, ISO and IEC developed a new standard on cloud computing to deal with issues of protection of PII and security of information. The new standard aims to address the down-sides of cloud computing and the concerns of the cloud clients, mainly the lack of trust and transparency, by developing controls and recommendations for cloud service providers acting as PII processors.

 

The article examines the strengths and weaknesses of the new standard, its added value to the cloud computing landscape and to data protection, as well as its relation to the European Personal Data Protection framework.

 

Keywords: cloud computing, standardisation, ISO, personal data, security, confidentiality

 

 

 

Connect with us

 

Brussels Privacy Hub

Law Science Technology & Society (LSTS)

Vrije Universiteit Brussel

Pleinlaan 2 • 1050 Brussels

Belgium

info@brusselsprivacyhub.org

@pivacyhub_bru

Stay informed

 

Keep up to date of our activities and developments. Sign up to our newsletter:

My Newsletter

Copyright © Brussels Privacy Hub