Outsourcing your IT management isn’t outsourcing your compliance risk. It’s still your responsibility
Compliance in the Cloud – their system, your responsibility
A recent article by Thomas Trappler on CIO.com discusses in some detail how businesses aren’t shedding any compliance risk by moving their computing to the cloud. Particularly in this area, consumers need to recognize that outsourcing certain functions doesn’t reduce or eliminate responsibility. Just the converse, it could make things a bit more difficult if you don’t keep close tabs on how your provider implements and is involved with your solution.
With compliance in the cloud, it’s their system, but your responsibility.
Here’s a brief excerpt of examples to whet your appetite…
Requires financial organizations to enter into contracts with third parties that they share their customer information with (including cloud vendors) to ensure that the third party handles that information securely. Executives of those financial organizations can be held personally liable for failure…
View original post 91 more words