The Privacy Challenges of Cloud Computing

Grazed from InfoSecurity. Author: Andy Kimble.

As technology advances, companies are increasingly turning to cloud-based solutions to solve the challenges posed by the increasing costs of traditional infrastructure. However, cloud-based solutions pose their own challenges, particularly where personal data is being stored or accessed from the cloud.

The Data Protection Act 1998 (DPA) governs the processing of personal data in the United Kingdom by data controllers. A data controller is an organization that (either alone, jointly or in common with other persons) determines the way in which personal data is, or will be, processed. A data processor is an organization that processes personal data on behalf of a data controller…

Amongst other things, the DPA sets out eight principles which govern the way that personal data can be processed. Data controllers are responsible for their data processors, and a controller will have to answer to the Information Commissioner (the UK data protection regulator) if a security incident arises as a result of the acts or omissions of its processor…

Read more from the source @ http://www.infosecurity-magazine.com/opinions/privacy-challenges-of-cloud/