Regulatory compliance plays a key role on whether to place sensitive personal data in a cloud service. There are explicit implications concerning cross-border data and trying to understand and track where you data might end up in the cloud can be challenge all by itself. The whole point of cloud computing is that you should not have to worry where the data is held. Unfortunately, legal requirements within a country will demand otherwise.
The ideal solution is for Cloud computing vendors to deliver appropriate assurances to customers. But so far there’s little indication of this. And working out what legislation applies in each country can be a difficult task for customers, especially as it’s a moving target.
One source that will help is Forrester Research’s privacy ‘heat map‘ which provides high level information on the data protection and privacy across a range of countries. It’s a useful starting point for anyone contemplating offshore services.
Let Daniel L. Ruggles and the team at PM Kinetics, LLC help you understand and navigate the complexities of Cloud Computing, Sourcing and Capital Planning, Vendor Management, IT Security, IT Infrastructure planning and execution.