Tag Archives: Cloud Privacy

Data in the Clouds: Cloud Storage Offers Businesses Flexibility & Convenience

Is on-premise storage a thing of the past? Is all storage inevitably moving to the cloud? If you’re in IT, you are no doubt keeping a close eye on the shift taking place in data storage infrastructure.

Organizations are increasingly adopting cloud storage options because they need more capacity, flexibility and a better way to manage storage costs. Additionally, many industries are taking advantage of remote-work options, giving their employees the ability to complete their tasks from home or while on the go.

It’s not surprising then that many businesses are supplementing their current storage with cloud data storage. Continue reading Data in the Clouds: Cloud Storage Offers Businesses Flexibility & Convenience

IBM Limits Data Breach Risks Through Portable Storage Device Ban

Organizations are always trying to reduce the risks of a data breach. Some industry leaders are taking decisive action through drastic internal measures to bolster security and limit risks. For example, IBM is banning the use of all portable storage devices including USB sticks, SD cards and flash drives.

Reasoning for the Ban

According to the Register, IBM chief information security officer, Shamla Naidoo said, “The possible financial and reputational damage from misplaced, lost, or misused removable portable storage devices must be minimized.” Banning their use is a good way to minimize that risk!

Individual departments within the tech giant have already had this device ban in place, acting as a litmus test for the new universal ban.

Strategy for a Deviceless Environment Continue reading IBM Limits Data Breach Risks Through Portable Storage Device Ban

One in Four Cloud Users Have Had Data Stolen

Questions over data security haven’t slowed organizations from storing private or sensitive data in the public cloud. Indeed, 97 percent of IT professionals are using a cloud service. However, a new survey by McAfee shows that roughly one in four organizations using the public cloud has experienced some form of data theft.

Despite the risks, cloud storage is continuing to surge in popularity and usage will likely continue to grow.

Diving into the Numbers

The McAfee survey questioned over 1,400 tech industry professionals. Let’s look at some of the survey results.

A clear majority of those surveyed, some 83 percent, said that they store sensitive organizational data in the public cloud, while only 69 percent of respondents trust that the public cloud can keep that data secure. Of that data, the most common information stored on the public cloud is customer personal information – with 61 percent of respondents storing this type of stored data in the public cloud.

The McAfee survey indicates that there are signs some organizations are moving forward with caution as indicated by a drop in the percentage of organizations taking a “cloud first” approach to data storage – down to 65 percent this year from 82 percent the year before. Continue reading One in Four Cloud Users Have Had Data Stolen

The CLOUD Act and Private Data in the U.S. and Abroad

In March 2018, the Clarifying Lawful Overseas Use of Data (“CLOUD”) Act was signed into law as part of the 2018 Omnibus Spending Bill. The CLOUD Act allows U.S. federal law enforcement to compel U.S.-based technology companies to provide requested data stored on servers regardless of whether the data are stored inside or outside the U.S.

The CLOUD Act establishes procedures for law enforcement when requesting this data and to provide clarity for organizations caught between conflicting domestic and foreign laws.

What is the Cloud? Continue reading The CLOUD Act and Private Data in the U.S. and Abroad

Microsoft Adopts ISO Standard for Cloud Privacy

Microsoft has adopted ISO/IEC 27018 – the world’s first international standard for cloud privacy – published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). ISO/IEC 27018 establishes commonly accepted control objectives and guidelines for implementing measures to protect personally identifiable information (PII).

According to Microsoft, the British Standards Institute has verified that Office 365, Dynamics CRM Online, and Microsoft Azure are in accordance with the standard’s code for protection of PII in the public cloud.

Adopting ISO/IEC 27018 has several implications for consumer privacy:

  • The organization commits to protecting the privacy of consumers’ PII
  • The consumers’ PII won’t be used for advertising purposes
  • Consumers are informed of government access and legal requests for PII

Key Takeaway:

Being an industry leader, Microsoft’s work to strengthen privacy and compliance protections for consumers should offer a positive outlook for privacy trends overall, and the ISO cloud standard specifically.