Last summer, the International Standards Organisation (ISO) and the International Electrotechnical Commission (IEC) published ISO 27018, the first privacy-specific international standard for cloud services. The new standard specifies the roles of a data controller and a data processor in maintaining the security and privacy of personally identifiable information (“PII”) stored in a public cloud environment. In contrast to existing information security standards that it builds on, such as ISO 27001 and ISO 27002, ISO 27018 is specifically tailored to cloud computing services.
This article analyses how successful was the new standard and what were the challenges.
A diverse group of human rights defenders in the EU has launched an ambitious project that aims to radically change the way information relating to human rights is organised. If successful, the initiative will create a system that can permanently identify and preserve all human rights data across all languages, and radically improve its availability to anyone who is working on the same issues in the future.