In April, the U.S. Department of Commerce’s International Trade Administration (ITA) issued a document clarifying the application of the U.S.-EU Safe Harbor Framework to cloud computing (the clarification). The ITA believes the Safe Harbor framework is “comprehensive and flexible enough” to cover cloud computing in the same way as other data transfers.

ITA reminded those

In a bid to help organisations better understand their compliance obligations under the Payment Card Industry Data Security Standard (PCI DSS) when using cloud technology to collect, store or transmit credit card data, the Payment Card Industry Security Standards Council (PCI SSC) has published the PCI DSS Cloud Computing Guidelines Information Supplement.

Formed through

The Business Software Alliance (BSA) Global Cloud Computing Scorecard, released March 7, 2013, indicates that the legal frameworks for cloud computing are improving, but inconsistently and with some worrying trends. The study tracks year-over-year changes in the global cloud policy landscape. It assesses the relevant laws and regulations of 24 countries that together account for

The use of cloud computing services is growing at an unprecedented rate, and brings with it concerns over the security of personal data stored on cloud servers. A recent study by the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (“LIBE”) argues that the main issue arising from the growing use of cloud

With a need for mobile access to data and the influx of innovative and affordable cloud computing products to global markets, organisations are shifting towards a greater use of the cloud. In response to its growing popularity, the Information Commissioner’s Office (ICO) has published guidelines on data protection compliance issues surrounding cloud computing. The practical

We previously told you about the Norwegian Data Protection Authority’s, Datatilsynet (Norwegian DPA) finding that Google Analytics breached that country’s data protection laws. In an about face, Norwegian DPA has now decided to hold off its ban on the use of Google’s and Microsoft’s cloud computing services by the Municipalities of Narvik and Moss,

With concerns over the potential fragmentation of the digital single market and the proliferation of different data protection standards for personal data across the EU, the European Commission (Commission) has published new guidance on the use of cloud computing. The Commission has identified the steps it wishes to introduce in 2013 to ensure publicly

The Schleswig-Holstein data protection authority (“ULD”) has published a series of recommendations on how to provide and use cloud computing services in a way that is compliant with German and European data protection laws. The recommendations are based on the Article 29 Working Party (the “Working Party”) Opinion on cloud computing (see our client alert

This post was written by Cynthia O’Donoghue.

The Article 29 Working Party (the “Working Party”) issued an Opinion on cloud computing that analyses the applicable law, obligations and other relevant issues for cloud service providers operating in the European Economic Area (“EEA”). The Opinion outlines how the wide-scale deployment of cloud computing services could