When choosing a cloud provider, IT and business professionals should ensure that the company can address data privacy requirements. With the invalidation of the "Safe Harbour" agreement - and the on-going negotiations between US and EU regulators over its replacement - the current regulatory environment in Europe is unclear. For this reason alone, organisations must ensure their cloud provider consistently maintains security procedures and protocols to protect all customer data and ensure compliance with current and future EU data privacy requirements. Many businesses may prefer to use a provider which can offer them a dedicated European data zone, with complete network segregation of all hardware and access levels. Whatever the end decision, a secure, global information management strategy must be a cornerstone of any corporate cloud adoption.
Whatever method businesses choose to solve the issue, action must be taken sooner rather than later. By avoiding the problem or tackling it in many different stages, organisations are opening themselves up to potentially huge penalties and fines. The reality is that most regulations do not require organisations to implement any dramatically new features in order to become compliant. They just require businesses to ensure a comprehensive information governance strategy is in place to monitor data and guarantee compliance with the shifting regulatory landscape.
Sign up for CIO Asia eNewsletters.