Cloud computing—data protection


Published by a ÀÏ˾»úÎçÒ¹¸£Àû TMT expert
Practice notes
In-house

Cloud computing—data protection


Published by a ÀÏ˾»úÎçÒ¹¸£Àû TMT expert

Practice notes
In-house
imgtext

In brief

Data protection laws in both the EEA (the EU plus Iceland, Norway, and Liechtenstein) and UK seek to ensure information about living individuals (within the definition of ‘personal data’) is used fairly and responsibly. To help ensure that, both EEA and UK data protection laws impose a large number of obligations on those ‘processing’ personal data and on controllers of such processing. ‘Processing’ is broadly defined to include doing most things with data, including storing, deleting, collecting, disclosing or using it.

One of the key protections under both EEA and UK data protection laws is the set of obligations placed on ‘controllers’ (usually meaning those that decide the purposes and means of processing) and ‘processors’ (those that process personal data on behalf of a controller further to the controller’s instructions). Among other things, EEA and UK data protection laws usually require controllers and processors to put in place contracts containing certain minimum provisions and ensure any processor(s) they engage are suitable. In a cloud computing arrangement, the end customer will often act as controller and the supplier

Powered by Lexis+®
Jurisdiction(s):
United Kingdom
Related legal acts:
Key definition:
Cloud computing definition
What does Cloud computing mean?

Computer network diagrams have traditionally represented the internet by using a picture of a cloud. This is because the internet’s 'location' is meaningless and vague. The internet’s function is solely to convey packets of data, unchanged, from one location to another specified location. How it gets there, and the route it takes, are functionally irrelevant. The term has expanded to mean computing services provided via the internet.

Read more readmore

Popular documents

Loot boxes—11 new principles for an industry-led approach

TMT analysis: David Zeffman, partner, and Jessica Wilkinson, associate, at CMS discussed the guidance published by the games industry trade body, UK Interactive Entertainment (Ukie), that is set to implement industry-led protections for loot boxes.

Software escrow

Software escrowIntroductionEscrow is the process of two or more parties placing property or instruments in the hands of a trusted third party (an ‘escrow agent’). The escrow materials are released to one of the parties following an agreed release event, such as satisfaction of that party’s

Software reseller agreement

Software reseller agreementSTOP PRESS—Impact of the Retained EU Law (Revocation and Reform) Act 2023: This document contains references to retained EU law (REUL) and associated terms introduced by the European Union (Withdrawal) Act 2018 in connection with Brexit. From 1 January 2024, REUL that

Using framework agreements for services

Using framework agreements for servicesSTOP PRESS—Impact of the Retained EU Law (Revocation and Reform) Act 2023: This document contains references to retained EU law (REUL) and associated terms introduced by the European Union (Withdrawal) Act 2018 in connection with Brexit. From 1 January 2024,