Skip to main content

Cloud Computing with German data protection level

By 15. April 2015March 17th, 2017Virtualisation

The cloud technology is not localized, so users can choose among providers worldwide cloud services. As for the data protection requirements, but there are significant differences between the different States.

Among the best known cloud providers are mainly US companies like Amazon, Microsoft and Google. But the USA is among the countries with the lowest level of data protection worldwide. But if the international community is not just how relevant alarmed by the Prism affair of the data protection conditions, make surprisingly few users thought about what happens to the data they entrust to the cloud provider of their choice.

PRISM scandal raises awareness of monitoring

By a whistleblower was announced that the US foreign intelligence NSA as part of the monitoring program Prism directly accesses the data of users worldwide, which are stored in large Internet companies like Google, Facebook, Apple, Microsoft, YouTube, Skype, AOL, Paltalk. The secret apparently open to extensive information like the content of e-mails or live chat, search queries and transferred files. According to media reports include German users to the most thoroughly monitored by the NSA. Launched after the terrorist attacks of 11 September 2001 Patriot Act requires US companies also to disclose on request the user data that host them outside the United States. The mere fact that the data is stored on servers in Europe, so this does not protect against access by the US authorities.

German cloud providers are subject to strict data protection rules

The local provider of cloud services are subject to the non-restrictive German data protection law. This means, among other things, that a service provider shall not divulge without his consent, the personal information of its customers. In addition, German service providers are obligated to protect the data by technical and organizational measures against unauthorized access or loss. Cloud providers who place particular importance on the security of the data of their customers, establish in their company a recognized information security system (ISMS). Its reliability is certified by international standards. Periodically, verified by independent audits shall assess the ISMS meets current safety requirements. Thus have suppliers who can provide evidence of certification for sophisticated and recognized standards, the highest level of security for the data of their customers. Global Access is currently the only cloud providers in Germany, the same certification according to DIN ISO / IEC 27001: 2005 (Information Security), ISO 27001-based IT Baseline Protection (strict requirements of the Federal Office for Security in Information Technology at the Information Security) and DIN EN ISO 9001: 2008 (Quality Management) has. We are proud that we give the highest priority to protecting the privacy of our customers.