5 legal gotchas in the cloud

Don't sign that contract until you consider five red flags in cloud service deals.

Source URL: http://www.itworld.com/security/157033/5-legal-gotchas-cloud
August 10, 2011, 3:30 PM
By Stacy Collett, Computerworld

Last year, a global food manufacturing and distribution company set out to move its HR talent management processes to a software-as-a-service provider. But as attorneys for the food company reviewed the proposed contract, they found some potentially serious legal land mines.

[10 SaaS companies to watch and SaaS, PaaS, and IaaS: A security checklist for cloud models]

For starters, the SaaS provider had operations in the U.S., Europe and Canada. "Europe and Canada are two jurisdictions that heavily regulate [the use of] personal information. Since this was an HR system, there would be a lot of personal information," recalls Rebecca Eisner, an attorney specializing in outsourcing who represented the food company.

The provider also wanted the flexibility to move the company's information to data centers anywhere in the world, and that would subject the company to the laws of whatever country the data passed through or landed in.

To continue reading, register here to become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

Don't sign that contract until you consider five red flags in cloud service deals.
Teaser: 
Don't sign a cloud computing contract until you consider five areas that are fraught with risk in the cloud. The red flags include not only data security and privacy, but also e-discovery, search warrants and jurisdictional issues.
Stacy Collett
cloud computing, SaaS, IT management
Source URL: http://www.itworld.com/security/157033/5-legal-gotchas-cloud

© 1994-2013 ITworld. All rights reserved.