The New Cloud Computing ISO/IEC 27018 Standard Through the Lens of the EU Legislation on Data Protection
26 Pages Posted: 6 Mar 2015
Date Written: December 23, 2014
At a time when cloud computing industry is developing rapidly, mainly due to the flexibility and the cost minimization cloud computing offers, ISO and IEC developed a new standard on cloud computing to deal with issues of protection of PII and security of information. The new standard aims to address the down-sides of cloud computing and the concerns of the cloud clients, mainly the lack of trust and transparency, by developing controls and recommendations for cloud service providers acting as PII processors.
The article examines the strengths and weaknesses of the new standard, its added value to the cloud computing landscape and to data protection, as well as its relation to the European Personal Data Protection framework.
Keywords: cloud computing, standardisation, ISO, personal data, security, confidentiality
Suggested Citation: Suggested Citation