Data Protection and the Cloud – Are you really managing the risks?

Applying the GDPR to the Cloud

The GDPR was enforced on 25 May 2018, superseding the 1995 Data Protection Directive and all its local implementations. The Regulation brings a 21st-century approach to data protection, introducing new, stricter requirements for organisations and expanding the rights of data subjects.

An expert introduction

More than 81% of organisations have now adopted the Cloud in some form compared to only 24% in 2014, according to the 2018 Bitglass Cloud Adoption Report, and it’s showing no signs of slowing. However, moving data to the Cloud does not solve security problems – it adds another element that needs addressing.

The pocket guide discusses the GDPR requirements relating to Cloud sourcing and the risks attached. With a view to helping managers ask the right questions, this book aims to help you learn how to meet your data protection obligations when using Cloud services.

Your essential guide to understanding the risks associated with the Cloud

This guide explains:

Supplemental material

While most of the EU GDPR’s requirements are broadly unchanged in the UK GDPR, the context is quite different and will have knock-on effects. You may need to update contracts regarding EU–UK data transfers, incorporate standard contractual clauses into existing agreements, and update your policies, processes and procedural documentation as a result of these changes.

A supplement that sets out specific extra or amended information is now available for this pocket guide, which focuses on identifying the key changes and context relating to the UK GDPR. As such, the information contained within the supplement is primarily of interest to organisations in the UK, organisations that process the personal data of UK residents, and organisations that process personal data on behalf of organisations in the UK. 

 Please visit the publisher’s website to access the supplements