Breaches in the Cloud Have Unique Challenges
CLOUD COMPUTINGOctober 4, 2012
In his article for The Privacy Advisor, attorney Thomas Shaw, CIPP, outlines the risks of cloud computing, how to evaluate those risks and how to respond to breaches when they occur. Noting that breach notification laws differ globally, Shaw outlines a series of questions to guide breach responses for data held in the cloud, including who is responsible for reporting the breach, to whom should the breach be reported, how does the cloud service provider know a breach has occurred and what type of evidence should be kept. “With data breaches, all cloud consumers should take the approach that the question is not if they will happen but when—and will I be ready?” Shaw writes.