Wednesday 08 September 2010
Many organisations are starting to adopt cloud computing services in order to realise efficiencies and to relieve pressures in data centre management. However, for many that utilise could services, they are uncertain of where their information is held and indeed who owns and can access that data. Furthermore, data that is considered secure in one country may not be secure in another. Currently in the process of trying to harmonise the data laws of its member states, the EU favours very strict protection of privacy. In America laws such as the US Patriot Act invest government and other agencies with virtually limitless powers to access information including that belonging to companies. In a number of cases jurisdiction was the main factor for organisations in rejecting cloud computing solutions.
All this confusion and risk means that it is important to be particularly vigilant about information security both in your own organisation and at the cloud service provider’s site. Information security is a system of policies and procedures designed to identify, control and protect information and any equipment used in connection with its storage transmission and processing.
