Azure Tutorials Series - Cloud Compliance
By now, we already know the basics of cloud, cloud deployment models, different sections of cloud services such as IaaS, PaaS or Saas. In this article we will learn about the compliance's that Cloud service provider follows.
Cloud Compliance
There are certain sets of guidelines and standards every cloud provider has to take care while providing its services to the customers. For instance, sensitive data which is hosted on the cloud servers by secret agencies could not be leaked. Whatever personal data user is hosting on cloud should be kept intact. We will be going through such standards and compliance's in this article
Criminal Justice Information Services(CJIS)
- FBI maintains a CJIS database and if any US state or local agency wants to access it has to adhere CJIS security policy
Cloud Security Alliance(CSA) Star Certification
- Independent third party assessment of cloud service provider
General Data Protection Regulation(GDPR)
- Came into the act in 2018
- European policy law applies to EU residents
- restricts collection and analysis of data
EU Model Clauses
- If a customer from Europe is moving outside of the continent, this law ensures that the data could be migrated as well
Health Insurance Portability and Accountability Act(HIPAA)
ISO/IEC 27018
Multi Tier Cloud Security(MTCS) Singapore
That is all to be covered for Cloud compliance. We need not to go into the details and learn what does what. Only the sound knowledge must be apt of these policies.
Looking forward to covering more topics!
Comments
Post a Comment