Privacy On Public Clouds – Five Issues You Must Know About

Privacy On Public Clouds – Five Issues You Must Know About

Privacy On Public Clouds – Five Issues You Must Know About

Cloud computing is everywhere and presents a compelling value proposition for its end users. However issues like privacy and security still are grey areas when it comes to public clouds. Here presented are five issues one must be aware of: 

1. You own the data and hence the responsibility CSP

Many cloud users do not know the answer to this question – Who owns my personal information once I upload it on the Cloud Service Provider’s (CSP) server? Most public cloud service providers recognize that the user retains ownership of data once it is uploaded. (e.g. https://www.facebook.com/legal/terms) This also means that you have decided to trust the CSP with handling of your data. The CSP may have some responsibility for handling the information safely but not all. You may choose a different service provider or choose not to put particular data on cloud altogether. But the buck stops at you are responsible for the data you put up there.

2. CSPs collect much more data

Typically at the time of joining you provide certain details including personally identifiable information (PIIs) to CSP. But you will be surprised to know that they know a lot more about you. The additional information is derived from your regular usage of their services. This includes when you log in, for how long you are connected, devices you use, location from where you connect, applications you use etc. Various mechanisms are employed to collect these details. Common methods use browser web storage, application data caches, cookies, pixel tags and anonymous identifiers.

3. You have only limited control over data

It is common for CSPs to provide few privacy options to end users. But there is a catch. Firstly you do not get to control every data, only a subset of privileges is offered. Secondly these options help you customize how rest of the world sees your information. Your CSP still has full access to the data, and they use it for a variety of purposes (e.g. http://www.google.co.in/intl/en/policies/privacy/). You cannot stop them from doing that because it is covered in the contract.

However, you still have some absolute powers in the form of local browser security settings. You can set the desired security levels and in effect block cookies or other scripts from executing. But there is a cost associated with this. The moment you say block cookies, many features may stop working. CSPs clearly state that in their terms and conditions. So if you want to get full features from the cloud this is not a practical option.

4. Encryption is your true friend

What if you have already signed up with cloud service provider? You still have a friend in terms of encryption. You can encrypt all your sensitive data before storing it on the cloud. This adds an additional security layer, control of which lies entirely with you. It may not be to the CSPs liking but highly recommended as this will fetch you greater control over safety of your data.

5. Law of the land may not apply

Unfortunately, privacy laws all over the world are still evolving and there is no global standard. While you may be governed by the state laws you live in, the same may not apply to your data. Your CSP and eventually the server where your data resides, may come under a different jurisdiction. So think again if you are counting on local laws to come to your rescue in case of a breach.

By Manoj Tiwari

About CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in connected technology information and services.

We embrace and instill thought leadership insights, relevant and timely news related stories, unbiased benchmark reporting as well as offer green/cleantech learning and consultive services around the world.

Our vision is to create awareness and to help find innovative ways to connect our planet in a positive eco-friendly manner.

In the meantime, you may connect with CloudTweaks by following and sharing our resources.

View All Articles

Sorry, comments are closed for this post.

The Cloud Showdown: How To Determine The Best Cloud Solution For Your Business

The Cloud Showdown: How To Determine The Best Cloud Solution For Your Business

The Cloud Showdown For small and medium businesses (SMB) seeking to grow in 2016, options for increasing efficiency abound. The Cloud offers many benefits for businesses, including slashing IT expenses, providing a more efficient and reliable way to store and back up data, and facilitating collaboration among employees. In fact, 39 percent of SMBs claim…

From Illusion To Reality: Up Personal On Cloud Computing Privacy

From Illusion To Reality: Up Personal On Cloud Computing Privacy

Cloud Computing Privacy We are under an illusion around the cloud computing. Without a doubt the benefits are incredible. However, cloud impacts personal user privacy and potentially exposes their private data in ways they may not have anticipated. Given that users don’t usually read the terms of service and privacy policies, it is unclear how…

Five Cloud Questions Every CIO Needs To Know How To Answer

Five Cloud Questions Every CIO Needs To Know How To Answer

The Hot Seat Five cloud questions every CIO needs to know how to answer The cloud is a powerful thing, but here in the CloudTweaks community, we already know that. The challenge we have is validating the value it brings to today’s enterprise. Below, let’s review five questions we need to be ready to address…

Vendors To Enter The Cyber Security Game

Vendors To Enter The Cyber Security Game

IT Regulatory Compliance as the Next Big Focus for Cloud Vendors Back in October 2014, Defense Information Systems Agency (DISA) submitted a public request for information, calling for the assessment of the marketplace’s ability to “provide cloud ecosystems and services in two integration models that place vendor cloud services on DoD networks for use by…

Jargon Free: The Three Real Main Benefits of Cloud IAM Solutions

Jargon Free: The Three Real Main Benefits of Cloud IAM Solutions

Main Benefits of Cloud IAM Solutions There are significant discussions concerning cloud applications and software solutions, such as identity and access management (IAM) solutions, which are used in conjunction with them. These articles often discuss complex technical reasons and benefits, which may be difficult for a non-technical person to understand. Cloud applications and cloud IAM…

Are You SURE You Are Ready For The Cloud? Cloud Readiness

Are You SURE You Are Ready For The Cloud? Cloud Readiness

Cloud Readiness Over the last three months, we have discussed the reasons why you may have wanted to move to the cloud.  Maybe the decision wasn’t yours to be made in the first place?  Either way, you are now getting ready to start down that road of cloud enlightenment! (Image source: Shutterstock) The question is,…

5 Reasons Why Your Startup Will Grow Faster In The Cloud

5 Reasons Why Your Startup Will Grow Faster In The Cloud

Cloud Startup Fast-tracking Start-ups face many challenges, the biggest of which is usually managing growth. A start-up that does not grow is at constant risk of failure, whereas a new business that grows faster than expected may be hindered by operational constraints, such as a lack of staff, workspace and networks. It is an unfortunate…

CloudTweaks is recognized as one of the leading influencers in cloud computing, infosec, big data and the internet of things (IoT) information. Our goal is to continue to build our growing information portal by providing the best in-depth articles, interviews, event listings, whitepapers, infographics and much more.

Sponsor