The Connected Web

Phil Wainewright

No Certainties on Cloud Confidentiality

user-pic
Vote 0 Votes

A report just published by the World Privacy Forum spells out the risks to privacy and confidentiality posed by cloud computing. Written by privacy expert Robert Gellman, Privacy in the Clouds (PDF) explains the murky uncertainties surrounding what might happen to your data once it's stored in the cloud. The main problem is that the terms of service of most cloud providers fail to make any useful assurances about where your data will be stored and how its confidentiality will be protected. This leaves it wide open to potential threats.

As alluded to in my item last week on Data Protectionism, the main threat comes not from actions (or inaction) by the cloud provider (whose commercial reputation relies on keeping your data secure) but from other parties. The simple act of putting your data in the cloud often makes its confidentiality less reliable than if you had kept it under your own control, says the WPF:

"In its analysis and discussion of relevant laws, the report finds that both government agencies and private litigants may be able to obtain information from a third party more easily than from the creator of the information. A cloud provider's terms of service, privacy policy, and location may significantly affect a user's privacy and confidentiality interests."

Some may draw the conclusion from this that cloud computing can never be trusted. I would argue for a far less draconian outcome. Cloud providers simply have to get their act together, as the report suggests: "If the cloud computing industry adopted better and clearer policies and practices, users would be better able to assess the privacy and confidentiality risks they face." It's up to the industry itself to understand the risks, contain them, and spell them out clearly to customers, ideally offering different levels of privacy and confidentiality assurances, priced according to what customers want and are prepared to pay for.

No TrackBacks

TrackBack URL: http://www.ebizq.net/MT4/mt-tb.cgi/15340

1 Comment

| Leave a comment

Interesting article on privacy concerns. This is exactly what our concerns are with as well. You always have that question in the back of your mind, once your data is "out there", and the fact that once it is out there, you can never really get it back. Maybe not a big deal for some things, but business, or personal items, it becomes a concern.

Scott Richmond
http://www.mysyncbox.com
"Cloud Computing That's Confidential"

Leave a comment

Phil Wainewright blogs about how businesses are using the Web to get better plugged into today's fast-moving, digital economy.

Phil Wainewright

Phil Wainewright specializes in on-demand services View more

Recently Commented On

Recent Webinars

    Categories

    Tag Cloud

    Accenture, Acrobat.com, Actional, Acumatica, Adobe, ADP, advertising, AdWords, aggregation, agile, AIR, AJAX, Amazon, Amazon Web Services, AMD, analysis, Andrew McAfee, antivirus, API, AppExchange, Appirio, Apple, Apprenda, Aria Systems, Ariba, Atlassian, authentication, Aviary, b2b, backup, benchmarking, billing, black swan, Blackberry, Bluewolf, Boomi, Box.net, BPO, Broadvision, Bungee Labs, business intelligence, business model, Business process, Central Desktop, Chatter, CIO, Cisco, Clara Shih, Clickability, cloud, Cloud computing, cloud computing, Cloud Computing Interoperability Forum, Cloudforce, Cloudkick, CODA, code of practice, Coghead, collaboration, colocation, commoditization, community, confidentiality, Conformity, contacts, content management, contextual, Cordys, Covario, CRM, CrowdFlower, crowdsourcing, CSC, customer advocacy, Customer communities, Customer service, customization, data, Demand Media, development, digital goods, Don Tapscott, Dropbox, e-commerce, e2conf, EC2, economics, eGain, email, Emergence Capital, Engine Yard, Enterprise 2.0, Enterprise Irregulars, Enterprise resource planning, Equinix, ERP, EU, Europe, events, ExactTarget, Excel, Exchange, Facebook, FaceBook, FatWire, file sharing, FinancialForce.com, firewall, Flash, Flexiant, Force.com, Forrester Research, Fred Wilson, Freshbooks, Fujitsu, gaming, Gartner, Generation-Y, geo-location, GigaSpaces, Gigya, Gmail, Google, Google AppEngine, Google Apps, Google Buzzz, Google Wave, governance, gwabbit, Gwabbit, HCM, Helpstream, heroku, Heroku, HP, HyperOffice, IBM, identity, iGoogle, inbox, InsideView, Intalio, integration, interoperability, intranet, iPad, iPhone, JackBe, Java, Jive Software, Kana Software, Keynote Systems, killer app, knowledge, KPI, latency, licensing, LinkedIn, Lithium Technologies, LiveOps, location, lock-in, Lotus Notes, Louis Nauges, lSuccessFactors, malware, manufacturing, market research, MarketBright, marketing automation, Marketo, mashups, Mashups, Maxplore, McKinsey, messaging, microblogging, Microsoft, Microsoft Exchange, migration, millennial, Mindflash, mobile, monetization, MrTed, multi-tenancy, NetSuite, Nick Carr, Notes, Omniture, on-demand, open source, OpenSocial, Opsource, Oracle, Outlook, Pageflakes, Panda, payment processing, PCI, PDF, people, performance, petascale, PivotLink, Platform as a Service, Platform as a service, Platform-as-a-service, Plaxo, Plex Systems, policy, portals, powerpoint, pricing, privacy, process, Progress Software, project management, protectionism, provisioning, Rackspace, real-time Web, recruitment, reporting, REST, retail, Ribbit, RightNow, RightScale, ROI, Rootstock, RSS, SaaS, sales, Sales 2.0, Salesforce.com, SAP, SAS, Saugatuck, Saugatuck Technology, ScanSafe, search, search engine optimization, security, self-service, Service level agreement, Service-oriented architecture, ServiceChannel, SharePoint, sharing, Sidekick, single sign-on, situational, Situational, SmartRecruiters, SMB, social computing, social media, Social networking, social networking, Socialtext, Software as a service, Sonoa Systems, spend management, Spoke, standards, storage, subscription, SuccessFactors, Sun Microsystems, Symantec, synchronization, systems management, T-Mobile, talent management, TCO, telepresence, ThinkStrategies, Tibco, time sharing, training, transformation, trust, Twitter, Ubuntu, UX, VAR, venture capital, viral marketing, virtual office, virtualization, VMware, Walmart, Wavemaker, Web 2.0, web 2.0, web analytics, web conferencing, web content management, web services, webtop, widget, wiki, Windows Azure, Windows Update, Wolf Frameworks, work 2.0, Workday, WorkLight, World of Warcraft, Xceliant, Xing, Yahoo!, Yakabod, ZapThink, Zuberance,

    Monthly Archives

    Blogs

    ADVERTISEMENT