The IT landscape is changing quickly, and Chambers and businesses alike are scrambling to install new technologies and move over to cloud computing to keep pace. In tandem, though, it’s equally important to keep pace with the legal and regulatory issues surrounding use of the public cloud and compliance with the EU data protection framework.
When it comes to dealing with sensitive and confidential legal data, the global nature of the cloud can be an issue. Hacking, governmental intervention in data and information or identity theft all pose a danger to communications and files, a threat magnified by the extremely sensitive nature of legal data.
Here at CBS, we advocate the use of the cloud as an efficient, cost effective and eco-friendly way to streamline your Chambers processes and save time. But we are aware of the responsibility of Chambers to protect the data stored in the cloud.
We are also aware that there is some ambiguity surrounding who is legally responsible for data stored or transferred in the cloud.
Who Is Responsible For Data in the Cloud?
The cloud is everywhere, and it’s relative youth and changeability means that there is some uncertainty around accountability and who is responsible for data stored or transferred in the cloud.
Is it you, the legal office handling data on behalf of a client, who is responsible, or the cloud provider? When a client entrusts personal information to you, it becomes your responsibility. But when you entrust it to the cloud, whose responsibility is it then? The answer is that a business or organisation holding personal data on behalf of other people is ‘controller’ of that data under the EU Data Protection Directive (DPD).
Even if you transfer that data to the cloud, it remains your responsibility. Under current law, the cloud provider is a ‘processor’, and you remain ‘controller’. You can’t offload data protection law or compliance responsibilities by putting the data in the cloud. That’s why you need to make sure that you are 100% confident in the security of your cloud provider, and that you are content to entrust confidential files to them.
That’s where we can help.
We offer cloud-hosting solutions to Chambers that are secure, reliable and scalable to your office size. We can offer the piece of mind that the data that you are responsible for in the cloud is kept safe within EU law and confidentiality agreements. The cloud offers considerable benefits and as long as your data is kept secure, can transform the way your Chambers operates.
Get in touch today to find out more.