Book description
The EU Data Protection Code of Conduct for Cloud Service Providers provides guidance on how to implement the Code within your organisation, exploring the objectives of the Code and how compliance can be achieved with or without a pre-existing ISMS (information security management system) within the organisation.
Table of contents
- Cover Image
- Title Page
- Copyright
- About the Author
- Contents
- Introduction
-
Chapter 1: Data protection requirements
- 5.1 Terms and conditions of the Cloud services agreement
- 5.2 Processing personal data lawfully
- 5.3 Sub-processing
- 5.4 International transfers of customer’s personal data
- 5.5 Right to audit
- 5.6 Liability
- 5.7 Cooperation with the customer
- 5.8 Records of processing
- 5.9 Data protection point of contact
- 5.10 Rights of the data subject
- 5.11 Cooperation with supervisory authorities
- 5.12 Confidentiality of the processing
- 5.13 Assistance with personal data breaches
- 5.14 Termination of the Cloud services agreement
- Chapter 2: Security requirements
-
Chapter 3: Detailed security objectives
- Objective 1 – Management direction for information security
- Objective 2 – Organisation of information security
- Objective 3 – Human resources security
- Objective 4 – Asset management
- Objective 5 – Access controls
- Objective 6 – Encryption
- Objective 7 – Physical and environmental security
- Objective 8 – Operational security
- Objective 9 – Communications security
- Objective 10 – System development and maintenance
- Objective 11 – Suppliers
- Objective 12 – Information security incident management
- Objective 13 – Information security in business continuity
- Chapter 4: Transparency
- Chapter 5: Assessment and certification
- Chapter 6: Conclusion
- Further reading
Product information
- Title: EU Code of Conduct for Cloud Service Providers - A guide to compliance
- Author(s):
- Release date: November 2021
- Publisher(s): IT Governance Publishing
- ISBN: None
You might also like
book
Information Security Policy Development for Compliance
Although compliance standards can be helpful guides to writing comprehensive security policies, many of the standards …
book
Data Protection and the Cloud - Are you really managing the risks?
With a view to helping managers ask the right questions, Data Protection and the Cloud explains …
book
Federal Cloud Computing, 2nd Edition
Federal Cloud Computing: The Definitive Guide for Cloud Service Providers, Second Edition offers an in-depth look …
book
Peter F. Drucker on Management Essentials
Classic Advice for Today's Management Challenges Peter F. Drucker's timeless thinking on management--distilled in this series …