Translated by microsofttranslator.com
It seems to be a hype to go "in the cloud" with your company. In our mobile time having your entire Office on your mobile is indeed a wonderful tool.
Here I try to put the advantages and disadvantages.
1. what is the Cloud anyway?
2. who delivers Cloud services?
3. where is the Cloud?
4. dates outside the door
5. What does the legislature as are your business information abroad?
6. How reliable is the cloud?
7. What are the advantages and disadvantages of the Cloud?
8. alternatives to the Cloud
What is the Cloud anyway?
With the cloud I mean a place that is not at all clear (anymore) may be indicated. Somewhere in that cloud flies the aircraft; you know he's there, but you can no longer see it. That also happens with data we put ' in the cloud ' with a provider. We know that the ' somewhere ' is saved but could no longer see the exact place or even designate. We assume that the cloud provider that you use will still know, because once those dates yet again want to evoke.
An example of Cloud applications are e-mail or an on-line word processor like MsOffice 365. The software is not on your own computer but you make use of it over the internet. You make files and store them in the Cloud.
Who delivers Cloud services?
There are many Cloud vendors; Dropbox, the program that is so useful to transfer files between a pc, tablet and smartphone to sync, we store in this article about. In Tips & tricks is given ample attention to this service, and most computer users are now known. The same applies to Lastpass you can synchronize passwords and usernames, and that Windows Live Skydrive files online can be saved and Gladinet, which provides the online storage space from Windows Live Skydrive and Google Docs can be accessed directly through Windows Explorer, is lesser known, yet we also Gladinet about. Also at the ' online applications ' we store a few titles on. Virtually everyone knows, that if Picasaonline photo album picture processor and serves. The same applies to the possibilities that Google Docs offers.
Just I came across an article on Webwereld.nl against stating that Cloud providers just come to Netherlands: the IBM's, Google's and Amazons of this world build substantially more data centers in the EU. According to EU governments here soon though because Director Nemitz can be trusted. see here.
Where is the Cloud?
A characteristic of cloud computing is that it is just like the Internet is cross-border. So not only sector-specific laws and regulations, national laws are involved. Its cloud a cloud provider can break it down into ' chunks ' countries, with guarantees for the border monitored?
All these data are stored somewhere in the cloud. And in the Service Level Agreement (SLA) is no doubt that the data safe (is that so? You look your TURN just after?). However, usually you know not where your data. And Yes, that makes out. How would you feel if your customer data is stored on a server in Uzbekistan? Or in China? How secure is your data in a country that cybercrime has not in the criminal code? Providers stomping now rapidly becoming large, centralized data centers from the ground, in countries and in locations where they can do the most advantageous. Netherlands is not necessarily the most suitable location.
But don't forget the politically correct countries not! If your data are stored on servers in the United States, they fall under American law. Under the Patriot Act, for example, can the u.s. Government understand your data at any time, even without your knowledge.
This could mean that in this case the u.s. Government in this way can come into the possession of trade secrets, customer databases, State secrets and other information that you'd rather not give away. How interesting it is for a company with development of nano-technology deals for its documents and email exchange through Google Apps or a similar service to run smoothly? How vulnerable is a public service if it via (a high-security application) in the cloud her computed? So the question is what information itself or may not lend itself to working in the cloud.
In any case, your stored information not only among the Dutch privacy laws. It may be that your business model it does not allow information is stored in other countries or that information must fall under the Dutch law.
These aspects need to be properly assessed before information is stored in the cloud. Do you know where your data are located?
Dates outside the door
At first glance this seems like no problem, but your data is with cloud computing outside the own organization. Well and, many will think. Some companies and organizations may, however, depending on the type of information, data at all rehousing. This concerns not only strict beregelde enterprises such as banks, but also, for example, companies that have privacy-sensitive information as healthcare institutions.
And if you should host information at another, that applies for across the border?
The large touted advantage of the cloud is correct that data and applications are in that cloud. And that you have to worry about there.
The idea behind cloud computing is flexibility to expand or to shrink. The cloud provider has size and scale. The advantage of this company that can pass on to the customer. The question is whether and how that happens. A good comparison between own ict and outsourcing in the cloud is perhaps, but to extrapolate that also falls? Look at scenarios of own growth but also downsizing. Because what is more beneficial now does not always be. Try to get a grip on that and keep.
What does the legislature, specially if your business data are abroad?
Data stored in the cloud
The data protection act is in any kind of data processing of application. With cloud computing, compliance with this law is slightly more complicated because there is a third party, namely the cloud supplier.
Privacy is a fundamental right closely linked to personal freedom. The Charter of fundamental rights of the European Union defines inter alia: ' everyone has the right to respect for his private and family life, his home and his communication. ' The right to data protection in the Charter has been developed in various directives, including the so-called Data protection directive (95/46/EC).
For example, if a healthcare facility management and maintenance of the databases with personal information yourself, but by a cloud supplier lets do, then calls the law this company the ' processor '.
A processor modified so the personal data for the health care institution, but under his control and responsibility. The responsible is required to have a contract with the processor. There should be, among other things, agreements on security of personal data. A cloud supplier acts on behalf of the institution, making it the processor, the institution remains so always (the) responsible (e)
The responsible has a duty of confidentiality.
The personal data to third parties by a responsible is prohibited, unless permission is given by the person concerned, or if the law excludes.
The controller should inform all stakeholders about the inclusion of their data in the database with the ' processor '. For example, this might happen or at logon in the newsletter. Data subjects have the right to see their data, to correct and to remove even if the registration no longer relevant.
The personal data protection Act (Wbp) requires that the processing of personal data should be reported to the Dutch data protection authority (CBP). These reports come in a public registry.
The institution has the duty to ensure a proper and responsible the appropriate degree of data security,
As a healthcare facility does not comply with the Wbp, this can lead to several problems. For example, a care receiver or a parent (if the care receiver is younger than 16 years) a complaint if, for example, personal information is leaked or on a public Web site has been made/ended up without consent of the individual concerned. The responsible is liable for harm associated with non-compliance with the Wbp.
Also, the health care institution to deal with the CPVO that an investigation: the CPVO can impose fines or impose a cease and desist order, that is, the health care institution is obliged to terminate the unlawful situation. Further, a health care institution to deal with image damage: infringements of privacy of residents/care receivers (especially if they are minors), are regarded as very serious and can always count on attention from the media.
How reliable is the cloud?
The Cloud is as reliable as your internet connection and Cloud supplier. But if the internet goes down is your company away until the internet is repaired. If someone with you can you a wrong action data Cloud vendor track.
What are the advantages and disadvantages of the Cloud?
Alternatives to the CloudHow simple is it to a Network-attached Storage (NAS) to place in the Office. The great thing about these simple devices is that it is your own cloud is: you bedrijfsgegevens again within reach, secured, safe and flexible. And relatively cheap because storage costs next to nothing more. 2 TB drives have been around for 70 euros.
My conclusion is that work in the cloud offers many benefits, but that the user should ask themselves what information he or she wants to bring in the cloud or not. Cloud computing is a mostly matter of trust and experience.
A sober with two feet on the ground response:
If you-as a company or person-choose your (core) business applications "somewhere in a vague, virtual cloud to hang"... Then realize very well the following
You total all lost control over your own digital backbone of your business because.
-your servers for your company no longer physically accessible
-your servers Physically not 100% under your own control.
-You can not protect your own stuff itself against intrusion, hacking, or other disasters
1. in the event of any emergencies outside your control by:
-Natural disasters (earthquake, flood, storm, fire)
-internet connection loss (count work on the go)
-data center own problems (fire, power supply)
-disagreement with regard to service agreements or payments
-coordinated cyberattack attacks against the cloud data center
Can your business applications (as well as all other applications that are in the same cloud and data center are suspended) within no time? be taken off the air by another-and goes your business, virtual up in smoke!
Another-not entirely unthinkable-credit scenario:
2. you get FINANCIAL MOT with your cloud vendor:
Who can then-in 1 hit-your "digital access to all data and applications? turn off so all your company, customers, and deny you access files and applications. Not a fun prospect.
3. another-not entirely unthinkable-credit scenario:
Your cloud vendor goes bankrupt and a receiver itself pulls the plug out the cloud machines.
Where do you then with all your business operations? Your business all of a sudden gone.
Is your cloud-like ict business model already calculates?
Look good or you want to pass, this bedrijfsrisicos. Also check what the Cloud-based service provider to decide to backup-failover capabilities in case of own calamities, disasters.
Think itself after! You become aware of all cloud risks first, before you are going to switch:
-fasting solid private land under your ict services or
-your applications hangs up somewhere in virtual clouds
If you have the financial benefits to your customers you can't go back when things go wrong. DAS a very expensive price for your business, just about to continue in force but hypes the ict industry.
In any case applies to the entire outsourcing happen (under the guise of ' just your core business still do myself), look before you leap. Please bear in mind that the direction of outsourcing and the haggling about whether or not what you often get poor service, including money, time, effort and aggravation costs.
But admittedly, it is easy to buy off responsibility and the accusatory finger pointing in the direction of a supplier, instead of to consult with you.