Description

Cloud computing has been characterized by some as a new type of revolution, allowing a great number of private and public bodies to utilize high level computing power and information technology facilities at impressively low financial cost. For others cloud computing is only a natural evolution of the internet ecosystem. In any case, there is no doubt that could computing has indeed altered the way the internet operates today, directly affecting the business strategies and technological development of relevant stakeholders and providing them with great economic but also security benefits.

However, the data processing models in the context of the cloud create new and sometimes serious risks to privacy. Such risks relate mainly to the lack of control of personal data in the cloud which can lead to data availability, integrity and confidentiality problems, as well as lack of data portability and isolation. The lack of transparency is another important concern, as in several cases the processing takes place by multiple parties and in different geographical locations within and/or outside the EU.

Against this background, the APF panel on «Privacy for the cloud» will analyse the current data protection risks and potential remedies in the cloud, putting particular emphasis on the relevant strategies of the European Union and aiming at enabling an active discussion and exchange of ideas in this area. To this end, the Draft Code for Cloud Computing which is currently being developed by the European Commission in co-operation with the Cloud Select Industry Group (CSIG) will be presented, together with other related EC activities. Considerations regarding the use of cloud computing by public institutions at national and European level will also be addressed.