Privacy Regulatory Model for the Cloud: A Case Study

Published in IEEE Cloud Computing (May – June 2015) Vol. 2, Issue 3, p. 67 – 72.

Abstract: As more organizations adopt the cloud, personal data will increasingly be stored and/or processed on the cloud. Organizations must be in tune with the privacy protection and legal requirements associated with the use of the cloud. Jurisdictions with omnibus privacy legislation based on the privacy guidelines developed by the Organisation for Economic Cooperation and Development (OECD) in 1980 usually have legal provisions and regulatory guidance that can be used to protect and govern the processing of personal data on the cloud. Using Hong Kong’s regulatory environment as an example, this article illustrates how these provisions and guidance can apply to the cloud. …more