The Cloud Security Alliance (CSA) today released the CSA Code of Conduct (CoC) Self-Assessment. An essential tool for those charged with General Data Privacy Requirements (GDPR) compliance, the CSA CoC Self-Assessment provides a transparent means for standardizing compliance initiatives.
After a three-year battle, a regional court in Berlin has found that Facebook’s default privacy settings, terms of service, and requirement that users register under their own name violate Germany’s data privacy and consent rules.
“What’s happening in the move to the cloud has happened in the tech industry from the beginning,” says Michael Landewe, Avanan co-founder and VP of business development. “People move to new tech based on new features and capabilities. Security always follows.”
“The cloud is a funny discussion. If it’s secure, all things being equal, they don’t really care where they get the information. The clients are driving the discussion.”
Cloud-centric computing is inevitable because the network, not your network, is just a conduit to allow access from trusted requestors to trusted resources.
The only times enterprises run into issues with cloud costs, deployment or other issues is when they try and completely “DIY.” Cloud may have radically democratized solution availability, but there are still complexities in the selection, installation and management process that should not be overlooked.
As cloud applications are gaining increased acceptance in the legal world, law firms and organizations need to develop intelligent policies to mitigate risks to protect client and firm data
As we all know, the way lawyers store our confidential files is highly regulated. Cloud storage means that your files are stored on someone else’s server in some other location and you remotely access those files. So, can you or should you do that? Is it ethical to store your highly confidential files in someone else’s office? The answer is mostly yes.
The 2015 Survey indicates that, for a significant number of lawyers and firms, cloud services are part of the IT equation, but we are seeing a pause or a plateau. The continuing lack of actual attention to confidentiality, security, and due diligence issues is a significant concern, especially with the growth in mobile apps running on cloud services.
Cloud or SaaS aren’t monolithic options; they are models under which a variety of configurations of services and computing options are provided. The articulation and configuration of those options within the profession is still being determined. There is no standard for a “legal cloud” the way we might see from our peers in healthcare or financial services.