Presentation is loading. Please wait.

Presentation is loading. Please wait.

Emtel 4G LTE NETWORK. “ The DPO Regulatory Perspective about Cloud Solutions” Presented by Mrs Drudeisha Madhub (The Commissionner )

Published byDaniella Shaw Modified over 9 years ago

Similar presentations

Presentation on theme: "Emtel 4G LTE NETWORK. “ The DPO Regulatory Perspective about Cloud Solutions” Presented by Mrs Drudeisha Madhub (The Commissionner )"— Presentation transcript:

1 Emtel 4G LTE NETWORK

2 “ The DPO Regulatory Perspective about Cloud Solutions” Presented by Mrs Drudeisha Madhub (The Commissionner ) Email: dmadhub@mail.gov.mu Tel: +230 201 36 04 Helpdesk: +230 203 90 76 Website: http://dataprotection.gov.mu Address: 4th Floor, Emmanuel Anquetil Building, Port Louis

3 The Data Protection Act The Data Protection Act 2004 was proclaimed in its entirety on the 16th of February 2009, except for section 17(5). In addition, the Data Protection Regulations 2009 (GN 22/09) were enacted to cater for registration fees for data controllers, other prescribed fees, the registration form for data controllers and the request for access to personal data form which represents the form to be used by data subjects (living individuals), for requesting access to their personal data from data controllers.

4 The Data Protection Act The Data Protection Act 2004 gives individuals rights to protect them against data protection breaches, and creates obligations for those keeping personal information. Under the Act, individuals have the right to be informed of any data processing activity which relate to them as data subjects.

5 Cloud Computing Cloud Computing has data protection implications which should be seriously looked into by all stakeholders to avoid putting people’s privacy rights at stake. Note:. Accountability for security and privacy in public clouds remains with the organisation as data controller. Consequently, organisations must ensure that any selected public cloud computing solution is configured, deployed, and managed to meet the security, privacy, and other requirements of the organisation.

6 Recommendations to Organisations 1.0 Criteria for selecting a cloud provider The security, privacy and other organisational requirements for cloud services to meet should be identified.

7 Recommendations to Organisations 2.0 Risk and Privacy-Impact Assessments It helps in analysing the security and privacy controls of a cloud provider with respect to the control objectives of the organisation. Volume 6: Guidelines on Privacy Impact

8 Recommendations to Organisations 3.0 Evaluation of the cloud provider This process helps in determining the ability and commitment to deliver cloud services over the target timeframe and meet the security and privacy levels stipulated. 4.0 Service Level Agreement It ensures that all contractual requirements are recorded including privacy and security provisions endorsed by the provider. A legal advisor is important for the negotiation and review of the terms of the SLA.

9 Recommendations to Organisations 5.0 Performance Assessment The cloud provider should continually be assessed. It must be ensured that all contract obligations are being met. 6.0 Termination The cloud provider should be alerted about any contractual requirements that must be observed upon termination. 7.0 Physical Access All electronic access rights, physical tokens, physical badges or others should be revoked in a timely manner.

10 Recommendations to Organisations 8.0 Resources It should be ensured that all resources under the SLA are returned in a usable form and secure evidence that information has been properly expunged.

11 Guideline - Data Protection Act 2004 Vol. 7 - Guidelines on Privacy Enhancing Technologies

12 Conclusion The use of cloud services can make very good business sense, but data controllers must always bear in mind that they cannot outsource their data protection legal obligations, nor the risk to their reputations with regard to the personal data they entrust to service providers. In connection with the globalised environment in which cloud computing operates, the current regulatory framework is the Data Protection Act which gives the DPO the responsibility for the safeguarding of personal data. However, when no specific data protection provisions apply in relation to cloud computing, users have no other choice but to safeguard data by means of detailed agreements with cloud computing service providers.

13

Download ppt "Emtel 4G LTE NETWORK. “ The DPO Regulatory Perspective about Cloud Solutions” Presented by Mrs Drudeisha Madhub (The Commissionner )"

Similar presentations

Telecom Regulatory Authority of India An introduction.

Telecom Regulatory Authority of India An introduction.
Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.
© 2013 Sri U-Thong Limited. All rights reserved. This presentation has been prepared by Sri U-Thong Limited and its holding company (collectively, “Sri.

© 2013 Sri U-Thong Limited. All rights reserved. This presentation has been prepared by Sri U-Thong Limited and its holding company (collectively, “Sri.
Cyber Security and Data Protection Presented by Mrs Drudeisha Madhub (Data Protection Commissioner ) Tel:+230 201 36 04 Helpdesk:+230.

Cyber Security and Data Protection Presented by Mrs Drudeisha Madhub (Data Protection Commissioner ) Tel: Helpdesk:+230.
BIOMETRICS, CCTV & DATA PROTECTION By Drudeisha Madhub Data Protection Commissioner Date: 09.07.14.

BIOMETRICS, CCTV & DATA PROTECTION By Drudeisha Madhub Data Protection Commissioner Date:
ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.

ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.
Auditor General’s Office One key audit focus area – Compliance with Laws and Regulations.

Auditor General’s Office One key audit focus area – Compliance with Laws and Regulations.
© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Privacy Management for a Global Enterprise.

© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Privacy Management for a Global Enterprise.
Information Security Policies Larry Conrad September 29, 2009.

Information Security Policies Larry Conrad September 29, 2009.
Code of Conduct for Mobile Money Providers 6 November 2014 All material © GSMA 2014. The policy advocacy and regulatory work of the GSMA Mobile Money team.

Code of Conduct for Mobile Money Providers 6 November 2014 All material © GSMA The policy advocacy and regulatory work of the GSMA Mobile Money team.
HSAs & RETIREMENT PLAN ADVISORS: A LEGAL, FIDUCIARY & BEST PRACTICES PERSPECTIVE Marcia S. Wagner.

HSAs & RETIREMENT PLAN ADVISORS: A LEGAL, FIDUCIARY & BEST PRACTICES PERSPECTIVE Marcia S. Wagner.
TITLE:- “How To Ensure Effective compliance with the Data Protection Act” PRESENTED BY:- The Commissioner, {Mrs D. Madhub} TO:- Lamco Insurance Ltd ON.

TITLE:- “How To Ensure Effective compliance with the Data Protection Act” PRESENTED BY:- The Commissioner, {Mrs D. Madhub} TO:- Lamco Insurance Ltd ON.
“Privacy For Websites” Presented by Mrs Drudeisha Madhub (The Commissionner) p Tel: +230 212 2218 Helpdesk: +230 203 90 76 Website:

“Privacy For Websites” Presented by Mrs Drudeisha Madhub (The Commissionner) p Tel: Helpdesk: Website:
Information Governance in Commissioning Mental Health Commissioners Collaborative.

Information Governance in Commissioning Mental Health Commissioners Collaborative.
Information Systems Controls for System Reliability -Information Security-

Information Systems Controls for System Reliability -Information Security-
Presented by Mrs Drudeisha Madhub (Data Protection Commissioner) Tel: +230 201 36 04 Helpdesk: +230 203 90 76 Fax: +230 201.

Presented by Mrs Drudeisha Madhub (Data Protection Commissioner) Tel: Helpdesk: Fax:
By Drudeisha Madhub Data Protection Commissioner Date: 12.08.14.

By Drudeisha Madhub Data Protection Commissioner Date:
Keeping on top of the Cloud - Compliance from a Regulator’s Perspective Henry Chang, IT Advisor Office of the Privacy Commissioner for Personal Data, Hong.

Keeping on top of the Cloud - Compliance from a Regulator’s Perspective Henry Chang, IT Advisor Office of the Privacy Commissioner for Personal Data, Hong.
© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2012 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
HIPAA Trading Partners, Legal Relationships October 2, 2001 presented by Peter B. Goldstein, Esq. Cap Gemini Ernst & Young, US LLC.

HIPAA Trading Partners, Legal Relationships October 2, 2001 presented by Peter B. Goldstein, Esq. Cap Gemini Ernst & Young, US LLC.

Similar presentations

Ads by Google