Data Protection in the Clouds

  • Yves Poullet
  • Jean-Marc Van Gyseghem
  • Jean-Philippe Moiny
  • Jacques Gérard
  • Claire Gayrel
Chapter

Abstract

Cloud computing appears as the last step of the evolution of information systems since the technology is using all the possibilities of the virtual world. Before the cloud, the Internet was a set of connections between computers and networks, now it is becoming (it already became?) a place where data can be stored. The phenomenon concerns social networks and other Web 2.0 platforms as well as companies that partly of wholly delocalize their computing resources. This chapter evokes the main privacy issues raised by this evolution. We pinpoint problems related to the protection of legal persons, to security, to transborder data flows, which are inherent to cloud computing and, finally, to the problems met by the law enforcement authorities. This contribution highlights some of the main issues raised by the cloud computing from the perspective of the Council of Europe’s Convention 108 (of January 28, 1981) for the protection of individuals with regard to automatic processing of personal data Council and it considers its possible modification.

Keywords

Cloud Computing Personal Data Cloud Provider Data Subject Data Controller 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

References

  1. Article 29 Data Protection Working Party, Working document on Privacy on the Internet – An integrated EU Approach to On-line Data Protection – (WP37), adopted on 21st November 2000Google Scholar
  2. Article 29 Data Protection Working Party, Working document on determining the international application of EU data protection law to personal data processing on the Internet by non-EU based web sites (WP56), adopted on 30 May 2002.Google Scholar
  3. Article 29 Data Protection Working Party, Opinion 1/2008 on data protection issues related to search engines (WP148), adopted on 4 April 2008.Google Scholar
  4. Article 29 Data Protection Working Party, Opinion 1/2010 on the concepts of “controller” and “processor” (WP169), adopted on 16 February 2010.Google Scholar
  5. Article 29 Data Protection Working Party, Opinion 2/2010 on online behavioural advertising (WP171), adopted on 22 June 2010, p. 17.Google Scholar
  6. Blok, P. Het recht op privacy, Boom Juridische uitgevers, 2003.Google Scholar
  7. Bygrave, L. Data Protection Law: Approaching Its Rationale, Logic and Limits, The Hague/London/New York: Kluwer Law International, 2002.Google Scholar
  8. Gannagé, L. “A propos de l’ “absolutisme” des droits fondamentaux”, in Vers de nouveaux équilibres entre ordres juridiques – Liber amicorum Hélène Gaudemet-Tallon. Paris: Dalloz, 2008.Google Scholar
  9. Gellman, B. Privacy in the clouds: Risks to Privacy and confidentiality from Cloud Computing, Report prepared for the World Privacy Forum, Feb. 23, 2009.Google Scholar
  10. Kuner, C. “Data Protection Law and International Jurisdiction on the Internet”, Parts 1 & 2, 18 (2 & 3). International Journal of Law and Information Technology, (2010).Google Scholar
  11. Mayer, P. “La Convention européenne des droits de l’homme et l’application des normes étrangères”, Revue Critique de droit international privé, (1991): 651–665.Google Scholar
  12. Meil, P., and T. Grance. The NIST Definition of Cloud Computing, Version 15, 10-07-09, available on NIST (National Institute of Standards and Technology) web site.Google Scholar
  13. Moiny, J.-P. “Facebook au regard des règles européennes concernant la protection des données”, 2 E.C.J.L., 2010, pp. 235 and ff.Google Scholar
  14. Reidenberg, J. “Technology and Internet Jurisdiction”, 153 UNIV. OF PENN. L. REV. 1951 (2005).Google Scholar
  15. Solove D.J. “Conceptualizing Privacy”, 90 California Law Review, 2002, 1085-.Google Scholar
  16. Spencer, J.R. “The Problems of Trans-Border Evidence and European Initiatives to Resolve Them” (2007) 9 Cambridge Yearbook of European Legal Studies 477.Google Scholar

Copyright information

© Springer Science+Business Media B.V. 2011

Authors and Affiliations

  • Yves Poullet
    • 1
  • Jean-Marc Van Gyseghem
    • 1
  • Jean-Philippe Moiny
    • 1
  • Jacques Gérard
    • 1
  • Claire Gayrel
    • 1
  1. 1.Research Centre on IT and Law (CRID), University of NamurNamurBelgium

Personalised recommendations