The AIIM Blog - Overcoming Information Chaos

The Cloud and Pending European Data Protection Regulations

Written by John Mancini | Aug 17, 2014 9:38:00 PM

Data Protection laws and regulations across the EU govern the storage and processing of data that would allow an individual to be recognized. They are intended to address the risks around privacy and data loss and to provide a framework for good information governance.

The development of public, private, government, and hybrid cloud computing services has created a challenge to on-premise data storage and processing, and thus created uncertainty regarding responsibilities of the respective organizations regarding data protection and data privacy.

The European Union is soon to implement the General Data Protection Regulation (GDPR), which will bring all 27 countries under a single regime of rules, and penalties for breach. AIIM regards this as an opportunity for cloud providers to deliver EU-wide services under a single operations model. However, providers and users need to be aware of the current legislative challenges.

The purpose of a new AIIM white paper -- Making sense of European Data Protection Regulations as they relate to the storage and management of content in the Cloud – is to inform end-users of the current and potential future legislative landscape in Europe regarding data protection and data privacy. This will enable end-user organizations to make risk-based decisions about cloud versus on-premise content storage. This will also allow them to evaluate providers of cloud services to ensure that they will stay compliant with applicable law.

For a review of this white paper by Ian Murphy from Business-Cloud.com, see Data Protection in the Cloud. Per Mr. Murphy, “The arrival of the European General Data Protection Regulation (GDPR) next year will start a 2-year scramble to be compliant or risk fines of 5% of turnover or 100m Euros for data breaches…it is a well-written paper with some clear guidance that cloud providers can begin to act on.”