Jump to content


Sign in to follow this  
ukaviator

Cloud on the horizon for data-handling outsourcing

style="text-align:center;"> Please note that this topic has not had any new posts for the last 2633 days.

If you are trying to post a different story then you should start your own new thread. Posting on this thread is likely to mean that you won't get the help and advice that you need.

If you are trying to post information which is relevant to the story in this thread then please flag it up to the site team and they will allow you to post.

Thank you

Recommended Posts

News release: 27 September 2012

 

Regulator moves to remind businesses of data responsibilities as more look to cloud computing to process personal information

 

The Information Commissioner’s Office (ICO) has published guidelines to businesses today to underline that companies remain responsible for how personal data is looked after, even if they pass it to cloud network providers. More and more businesses are looking to use cloud computing, with the economies of scale they offer giving access to a range of computer technologies and expertise that would be difficult to afford in-house. But data protection regulator ICO is concerned that many businesses do not realise they remain responsible for how the data is looked after, even after passing it to the cloud network provider.

 

That’s prompted the ICO to produce a guide to cloud computing, to help businesses comply with the law. The guide gives tips including:

  • Seek assurances on how your data will be kept safe. How secure is the cloud network, and what systems are in place to stop someone hacking in or disrupting your access to the data?
  • Think about the physical security of the cloud provider. Your data will be stored on a server in a data centre, which needs to have sufficient security in place.
  • Have a written contract in place with the cloud provider. This is a legal requirement, and means the cloud provider will not be able to change the terms of the service without your agreement.
  • Put a policy in place to make clear the expectations you have of the cloud provider. This is key where services are funded through adverts targeted at your customers: if they’re using personal data and you haven’t asked your customers’ permission, you’re breaking data protection law.
  • Don’t forget that transferring data internationally brings a number of obligations – that includes using cloud storage based abroad.

Speaking as the guide was launched, author Dr Simon Rice, ICO technology policy advisor, said:

“The law on outsourcing data is very clear. As a business, you are responsible for keeping your data safe. You can outsource some of the processing of that data, as happens with cloud computing, but how that data is used and protected remains your responsibility.

“It would be naïve for an organisation to take the attitude that these guidelines are too much effort to simply store some data in a different place. Where personal information is involved, the stakes are high and the ICO has already demonstrated it will act firmly against those who don’t meet data protection laws”

The ICO recently issued a monetary penalty of £250,000 to Scottish Borders Council, after it failed to properly manage a company it had employed to digitise pension records. The council did not have a contract with the contractor, and hadn’t made the necessary security checks. Simon added: “Figures show that consumers are concerned about how secure their data is when they use cloud storage themselves. It takes little imagination to consider that businesses not reflecting those concerns will quickly find themselves losing customers’ good will.”

 

A recent online YouGov survey commissioned by the ICO found that 46 per cent of UK adults online who use cloud storage are concerned about the security of their information in cloud storage.

The survey also found that only 39 per cent of adults online realised that social media used cloud storage to store personal data, while 46 per cent did not realise that by hosting their information on cloud servers, their information could be being stored anywhere in the world.

Notes to Editors

 

1. The Information Commissioner’s Office upholds information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

2. The ICO has specific responsibilities set out in the Data Protection Act 1998, the Freedom of Information Act 2000, Environmental Information Regulations 2004 and Privacy and Electronic Communications Regulations 2003.

3. Anyone who processes personal information must comply with eight principles of the Data Protection Act, which make sure that personal information is:

  • Fairly and lawfully processed
  • Processed for limited purposes
  • Adequate, relevant and not excessive
  • Accurate and up to date
  • Not kept for longer than is necessary
  • Processed in line with your rights
  • Secure
  • Not transferred to other countries without adequate protection

4. All figures, unless otherwise stated, are from YouGov Plc. Total sample size was 2155 adults. Fieldwork was undertaken between 6th - 9th September 2012. The survey was carried out online. The figures have been weighted and are representative of all UK adults (aged 18+).

5. The ICO is on Twitter, Facebook and LinkedIn, and produces a monthly e-newsletter.

 

6. For more information, please contact the ICO press office on 0303 123 9070.

 

Link: http://www.ico.gov.uk/news/latest_news/2012/cloud-on-the-horizon-for-data-handling-outsourcing-27092012.aspx


Some useful links.

FAQ's

Making Posts

Letter Template Library

Bank Contact Details

AQ Guide to Completion

Court Fees

Data Protection non Compliance

Witness Statements for Court Bundle

Banking Code Website

Limitations Act

Fast Track Costs

A-Z Index

Mis-Claim Tutorial

Step By Step Instructions

 

Remember: The Ark was built by amateurs-The Titanic by professionals.

 

Please click my scales if you find my advice helpful !

 

If your claim is successful, please donate 5% so that it can continue to help others.

 

Your decisions and actions are your own, and should you be in any doubt, please seek qualified professional legal Help.

 

WARNING TO ALL

Please be aware of acting on advice given by PM .Anyone can make mistakes and if advice is given on the main forum people can see it to correct it ,if given privately then no one can see it to correct it. Please also be aware of giving your personal details to strangers

 

HAVE YOU BEEN TREATED UNFAIRLY BY CREDITORS OR DCA's?

 

YOU CAN NOW COMPLAIN TO THE OFT ABOUT THEIR CONDUCT UNDER THE CONSUMER PROTECTION FROM UNFAIR TRADING REGULATIONS 2008.

Share this post


Link to post
Share on other sites
Sign in to follow this  

  • Recently Browsing   0 Caggers

    No registered users viewing this page.


  • Have we helped you ...?


×
×
  • Create New...