Privacy and Legal Issues in Cloud Computing

Privacy and Legal Issues in Cloud Computing

Elgar Law, Technology and Society series

Edited by Anne S.Y. Cheung and Rolf H. Weber

Adopting a multi-disciplinary and comparative approach, this book focuses on emerging and innovative attempts to tackle privacy and legal issues in cloud computing, such as personal data privacy, security and intellectual property protection. Leading international academics and practitioners in the fields of law and computer science examine the specific legal implications of cloud computing pertaining to jurisdiction, biomedical practice and information ownership. This collection offers original and critical responses to the rising challenges posed by cloud computing.

Chapter 2: Data protection regulation and cloud computing

Henry Chang

Subjects: asian studies, asian law, law - academic, information and media law, intellectual property law, internet and technology law, law and society, regulation and governance, politics and public policy, public policy, regulation and governance


The benefits of cloud computing make it appealing to a wide range of organizational customers: from small and medium enterprises to non-government organizations, which lack the expertise or resources to manage a complex and costly internal information technology (IT) infrastructure, to large multinational corporations that are attracted by the potential cost savings. However, despite the management and cost advantages of cloud computing, there are a number of information security and privacy protection concerns in particular, when the cloud is used to process or handle personal data. These concerns result from organizational customers’ apparent lack of control over and oversight of the way in which personal data are protected and managed therein. This chapter covers the issues that organizational customers need to consider if they decide to engage the services of cloud providers. It first outlines the basic data protection principles underpinning the obligations of data users/controllers, and then describes the common data protection concerns that organizations have when engaging outsourcers, of which cloud providers are considered as a special type. Finally, the chapter outlines several characteristics of the business model that many cloud providers adopt and how those characteristics affect the protection of personal data privacy. Throughout the discussion, recommendations from data protection authorities (DPAs) are provided, where applicable. There are many classifications and features of cloud computing.

You are not authenticated to view the full text of this chapter or article.

Elgaronline requires a subscription or purchase to access the full text of books or journals. Please login through your library system or with your personal username and password on the homepage.

Non-subscribers can freely search the site, view abstracts/ extracts and download selected front matter and introductory chapters for personal use.

Your library may not have purchased all subject areas. If you are authenticated and think you should have access to this title, please contact your librarian.

Further information