A report detailing EU authorities cloud use might be launched by 12 months’s finish
Are the member states of the European Union (EU) compliant with knowledge privateness legal guidelines? That’s a query the European Information Safety Board (EDPD) hopes to reply. The company introduced final week the beginning of its “investigations into the usage of cloud-based providers by the general public sector.”
The general public sector cloud use report is a part of a collection of actions meant to align and implement knowledge safety requirements amongst EU supervisory authorities. The Brussels-based group was established by the EU’s Common Information Safety Regulation (GDPR). It contributes to the constant utility of GDPR guidelines within the EU.
The announcement the federal government cloud investigation was underway got here 4 months after the EDPB first introduced plans to analyze public sector cloud use. The unbiased company stated that within the coming months, 22 supervisory authorities will collect info for its report, which might be revealed earlier than the tip of the 12 months.
The group acknowledged the digital transformation has created stress for public sector organizations to seek out cloud-based options that adjust to EU knowledge safety guidelines.
“The COVID-19 pandemic has sparked a digital transformation of organisations, with many public sector organisations turning to cloud know-how. Nonetheless, in doing so, public our bodies at nationwide and EU stage could face difficulties in acquiring Data and Communication Know-how services that adjust to EU knowledge safety guidelines,” stated the EDPD in a press release.
“By coordinated steering and motion, the SAs goal to foster greatest practices and thereby make sure the satisfactory safety of private knowledge,” it stated.
The EDPD stated the invention course of will yield info to assist EU member states implement authorities cloud safeguards and constant insurance policies. The data-gathering course of will pinpoint areas needing additional investigation and extra strong coverage enforcement. The EDPD stated greater than 80 public our bodies throughout the EU might be investigated, together with well being, finance, tax, training and central buying of IT providers.
“Specifically, [Supervisory Authorities] will discover public our bodies’ challenges with GDPR compliance when utilizing cloud-based providers, together with the method and safeguards applied when buying cloud providers, challenges associated to worldwide transfers, and provisions governing the controller-processor relationship,” stated the company.
The group plans to combination knowledge collected by the supervisory authorities earlier than deciding on additional motion.