This part II of an interview with attorney at law and CEO of CloudRisk Asia explains why cloud users need to scrutinize the boilerplate clauses in a cloud contract, and discusses the intricacies of data collection, retention, deletion and delivery by CSPs during a contract's lifetime.
by: Carol Ko 06-Jul-2012
Attorney at law and CEO of CloudRisk Asia exposes the conflicting interests between cloud vendors and customers. Are all public cloud service contracts "non-negotiable?" What four items can a cloud service customer perform off-site? How difficult can defining "service downtime" be?
by: Carol Ko 03-Jul-2012
At the recently concluded Asia Cloud Conference held in Manila, CloudRisk Asia CEO Thomas Shaw stressed that a risk-aware approach helps private and public sector companies move forward in their cloud strategies.
by: Eden Estopace 01-Dec-2011
What are the different data privacy laws in force today? Can the Chinese government seize customer data which resides in a cloud data center in Hong Kong? What actions can firms take to protect their corporate data from government seizure, such as in the name of 'terrorism?'
by: Carol Ko 03-Aug-2011
This second part of "Cloud legal issues" series discusses the role of in-house legal counsels in the process of cloud service contract negotiations, and the potential legal liabilities that lawyers should bear in mind in three unfortunate circumstances.
by: Carol Ko 13-Jul-2011
Cloud users are advised to self-assess and understand the relevant threats, controls, parameters, and metrics in any cloud SLA. Perform a risk assessment of each cloud vendor based on a wide range of criteria: legal, technical, business, service, security, governance, audit and response.
by: Carol Ko 11-Jul-2011