[IRP] Fwd: [Privacy-coalition] location of data in the cloud // new URL
Katitza Rodriguez
katitza
Sat Jan 9 16:31:49 EET 2010
fyi,
Begin forwarded message:
> From: Cristos Velasco <cristosuofa at yahoo.com>
> Date: January 9, 2010 9:26:17 AM EST
> To: privacy-coalition at lists.apc.org
> Subject: Re: [Privacy-coalition] location of data in the cloud //
> new URL
> Reply-To: privacy-coalition at lists.apc.org
>
> From a user perspective is very difficult to know exactly where my
> personal data resides since there are multiple contractual
> arrangements by and between cloud and access service providers that
> the user is not completely aware of. Therefore I would like to
> remind about a point I made during my presentation in the Public
> Voice Panel on Cloud Computing in Madrid.
>
>
>
> ?Cloud companies and service providers should be directly
> responsible for handling and processing of personal information in
> the cloud. Companies and service providers should both provide high
> security levels to protect personal and confidential information of
> users, and be prepared to provide prompt notice in case of
> information leaks, security breaches, or when misuse of personal
> information has occurred in the cloud, as well as to establish
> efficient mechanisms to submit complaints and obtain redress in a
> fair and timely manner and without undue cost or burden to the user. ?
>
>
>
> I agree with Marc in the sense that the principle should evolve and
> be further developed within the sphere of international and regional
> organizations as well as at the national level.
>
>
>
> Regards,
>
>
>
> Cristos.
>
>
> --- On Sat, 1/9/10, Marc Rotenberg <rotenberg at epic.org> wrote:
>
> From: Marc Rotenberg <rotenberg at epic.org>
> Subject: Re: [Privacy-coalition] location of data in the cloud //
> new URL
> To: privacy-coalition at lists.apc.org
> Date: Saturday, January 9, 2010, 8:50 AM
>
> Max -
>
> It is precisely because it may be unclear to the user with cloud
> computing in which jurisdiction data resides that the service
> provider should have the responsibility to resolve this question.
>
> This is not only a matter of fairness and transparency but also it
> is economically efficient. The provider is "the least cost avoider"
> and most likely to have access to the relevant information.
> For the user, it could be impossible to determine.
>
> This is an excellent principle and it should be enacted into law.
>
> On this point, I was also very pleased to see that the US FTC
> has told the FCC it will be pursue the EPIC complaint on
> cloud computing and privacy. Perhaps one of the outcomes
> will be the adoption of this principle!
>
> Regards,
>
> Marc Rotenberg
>
> On Jan 9, 2010, at 8:35 AM, Max Senges wrote:
>
>> Hi there
>>
>> In the privacy section are a couple of imprecise language like
>> "hidden mechanisms" and I would urge our privacy experts to take
>> another look before we hand it over to the experts.
>>
>> One point struck me particularly was: "Service providers have a
>> responsibility to make clear in which legal jurisdiction(s) the
>> user's data is being hosted, so that the user can make informed
>> decisions."
>>
>> My understanding is that with cloud computing it is impossible to
>> say in which jurisdiction data resides. When I travel to asia some
>> of my files (the ones i access from there) move (temporarily) to a
>> data center in asia. Not sure what the best solution is, but it
>> seems to me that the current language is not "future proof".
>>
>> The Charter has a new URL @ https://docs.google.com/Doc?id=ajcs86p9dx2s_488rpfcbcc
>> #Article_12_Privacy__6397468594785073
>>
>> Best
>> Max
>>
>>
>>
>>
>> --
>>
>> "The future is here. It?s just not widely distributed yet."
>> ?William Gibson
>>
>> ...........................................................................
>>
>> Max Senges
>> Berlin
>>
>> www.maxsenges.com
>>
>> Mobile: 01622122755
>> _______________________________________________
>> Privacy-coalition mailing list
>> Info and options: http://lists.apc.org/cgi-bin/mailman/listinfo/privacy-coalition
>> To unsubscribe, email privacy-coalition-unsubscribe at lists.apc.org
>
>
> -----Inline Attachment Follows-----
>
> _______________________________________________
> Privacy-coalition mailing list
> Info and options: http://lists.apc.org/cgi-bin/mailman/listinfo/privacy-coalition
> To unsubscribe, email privacy-coalition-unsubscribe at lists.apc.org
>
> _______________________________________________
> Privacy-coalition mailing list
> Info and options: http://lists.apc.org/cgi-bin/mailman/listinfo/privacy-coalition
> To unsubscribe, email privacy-coalition-unsubscribe at lists.apc.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.internetrightsandprinciples.org/pipermail/irp-internetrightsandprinciples.org/attachments/20100109/55921eb7/attachment.htm>
More information about the IRP
mailing list