Cloud Service Providers And The Law

Cloud Service Providers And The Law

Cloud Service Providers And The Law

Imagine opting out of the continuous struggle to keep software up to date, and essentially getting rid of overburdened corporate IT departments struggling to keep systems functional. This initial flavor of cloud computing given to the public is increasingly holding true to its promise due to numerous benefits such as flexibility, cost reduction, accessibility, and reliability. Undoubtedly, cloud computing presents a potential paradigm shift for all industries and sectors with many benefits such as flexibility, cost reduction, accessibility, and reliability.

While several technical benefits of cloud computing exist, there are few important considerations for users and corporations. One of the most important is the legal repercussions these new technologies may trigger. With the arrival of any new technology, the applicability of existing laws and the possibility of new laws tailored specifically to the new technology remain unclear until precedents are set. The cloud computing phenomena is global in nature challenging the very touchstone of jurisdictional complexities.

Lawyers-law-firms-cloud-computing

(Infographic Source: Business Of Law Blog)

These legal qualms pose significant risks to cloud service providers and users alike. Service providers constantly battle to strike a balance between reward of investing in better and new technologies; on the other hand, they expose themselves to greater risk of potential lawsuits as well as uncertain future regulations. For small businesses, this issue may even be greater as they lack resources to effectively negotiate contracts with large cloud service providers. On the other hand, large corporations may be easier to draft and negotiate a ‘strong’ contract with service providers.

Broadly speaking, there are six widely applicable regulations relating to cloud computing in the United States.

1. Stored Communications Act (SCA)
2. USA Patriot Act
3. The Health Insurance Portability and Accountability Act (HIPAA)
4. US Export Control Regulations
5. Federal Trade Commission Act
6. Communications Privacy Act of 1986 (ECPA).

While laws extensively cover areas related to security and privacy, loopholes are certain when referring matters relating to cloud computing. For instance, in 2011, a class action complaint was lodged against a cloud storage provider in Wong v. Dropbox, Inc., where, it was alleged that the company violated the California Unfair Competition Law and negligently invaded privacy of individuals. The class action complaint against Dropbox arose out of an update that inadvertently allowed anyone to log into any account using any password within a four hour window.

The risks are geared towards confusion as to applicable laws, the changing regulatory climate, and lack of industry standards. Cloud computing does reflect paradigm shift for both users and corporations, as it allows taking advantage of economies of scale as well as specialization to provide a more efficient and economical solution.

As jurisdiction within the cloud is so unclear, the only option would be to come to a mutual agreement or a compromise between cloud provider and user. Therefore, a harmonious and uniform set of laws governing data privacy and security is required which, in turn, would be beneficial in several respects. For instance, service providers would be able to assess their risks more accurately subsequently decreasing the need for them to push their risk onto users through contracts that force the customer to deal with privacy breaches that may be the fault of the service provider.

By Syed Raza

Sorry, comments are closed for this post.

5 Things To Consider About Your Next Enterprise Sharing Solution

5 Things To Consider About Your Next Enterprise Sharing Solution

Enterprise File Sharing Solution Businesses have varying file sharing needs. Large, multi-regional businesses need to synchronize folders across a large number of sites, whereas small businesses may only need to support a handful of users in a single site. Construction or advertising firms require sharing and collaboration with very large (several Gigabytes) files. Financial services…

Cost of the Cloud: Is It Really Worth It?

Cost of the Cloud: Is It Really Worth It?

Cost of the Cloud Cloud computing is more than just another storage tier. Imagine if you’re able to scale up 10x just to handle seasonal volumes or rely on a true disaster-recovery solution without upfront capital. Although the pay-as-you-go pricing model of cloud computing makes it a noticeable expense, it’s the only solution for many…

Moving Your Email To The Cloud? Beware Of Unintentional Data Spoliation!

Moving Your Email To The Cloud? Beware Of Unintentional Data Spoliation!

Cloud Email Migration In today’s litigious society, preserving your company’s data is a must if you (and your legal team) want to avoid hefty fines for data spoliation. But what about when you move to the cloud? Of course, you’ve probably thought of this already. You’ll have a migration strategy in place and you’ll carefully…

Three Reasons Cloud Adoption Can Close The Federal Government’s Tech Gap

Three Reasons Cloud Adoption Can Close The Federal Government’s Tech Gap

Federal Government Cloud Adoption No one has ever accused the U.S. government of being technologically savvy. Aging software, systems and processes, internal politics, restricted budgets and a cultural resistance to change have set the federal sector years behind its private sector counterparts. Data and information security concerns have also been a major contributing factor inhibiting the…

How The CFAA Ruling Affects Individuals And Password-Sharing

How The CFAA Ruling Affects Individuals And Password-Sharing

Individuals and Password-Sharing With the 1980s came the explosion of computing. In 1980, the Commodore ushered in the advent of home computing. Time magazine declared 1982 was “The Year of the Computer.” By 1983, there were an estimated 10 million personal computers in the United States alone. As soon as computers became popular, the federal government…

The Fully Aware, Hybrid-Cloud Approach

The Fully Aware, Hybrid-Cloud Approach

Hybrid-Cloud Approach For over 20 years, organizations have been attempting to secure their networks and protect their data. However, have any of their efforts really improved security? Today we hear journalists and industry experts talk about the erosion of the perimeter. Some say it’s squishy, others say it’s spongy, and yet another claims it crunchy.…

Three Challenges of Network Deployment in Hyperconverged Infrastructure for Private Cloud

Three Challenges of Network Deployment in Hyperconverged Infrastructure for Private Cloud

Hyperconverged Infrastructure In this article, we’ll explore three challenges that are associated with network deployment in a hyperconverged private cloud environment, and then we’ll consider several methods to overcome those challenges. The Main Challenge: Bring Your Own (Physical) Network Some of the main challenges of deploying a hyperconverged infrastructure software solution in a data center are the diverse physical…

Three Tips To Simplify Governance, Risk and Compliance

Three Tips To Simplify Governance, Risk and Compliance

Governance, Risk and Compliance Businesses are under pressure to deliver against a backdrop of evolving regulations and security threats. In the face of such challenges they strive to perform better, be leaner, cut costs and be more efficient. Effective governance, risk and compliance (GRC) can help preserve the business’ corporate integrity and protect the brand,…