Ardi Kolah, Cloud Service Providers under the GDPR

The author discusses how cloud service providers may be considered Data Processor under the EU General Data Protection Regulation (GDPR) if they provide “data processing services (e.g. storage) on behalf of the Data Controller without determining the purposes and means of processing (Art.4(7) and (8), GDPR).” The article draws a line between duties and responsibilities imposed on data controllers and processor by the GDPR with reference to cloud services.

The full text is available at https://www.linkedin.com…