Information Privacy & Cloud Services

Data Privacy

As more businesses take advantage of the Cloud to provide cost-effective applications and services the importance of considering privacy requirements for information stored elsewhere needs to be taken into consideration.

In addition, your business may knowingly or unknowingly be subject to global compliance or regulatory standards – for example the General Data Protection Regulation (GDPR) which is the new European data protection law which takes effect next May after a two-year transition period.

If your business handles any personal data for individuals who reside in the European Union then the requirements of the GDPR apply.

As the European Union is viewed as the role model on privacy issues internationally, it would be reasonable to see these concepts adopted elsewhere over time.

What can I do?

The most important thing that you can do as a business owner is to ensure that you ask the right questions of your service provider or take responsibility for the due diligence required in choosing what Cloud Service to use.

As an example, Microsoft provide a wealth of information on Compliance, Security & Privacy in one central location, the Microsoft Trust Centre, which provides resources designed to help understand your obligations, which global standards might apply and how Office 365 provides peace of mind compliance backed by independent audit.

Other Cloud providers can provide compliance standards but often these are dependent on the choice of product and plan and may come at additional cost.

Additional, independent information can be found at the Office of the Privacy Commissioner website and BlueBerryIT strongly recommend that you download the February 2013 report entitled Cloud Computing – A guide to making the right choices.

As always if you have any questions get in touch with one of the BlueBerry Bunch.