Cloud computing services can trigger several data protection risks, mainly a lack of control over personal data, as well as insufficient information about the processing of data. The ability of data to move rapidly within the cloud and the lack of transparency about its residency present new challenges. EU-GDPR and Schrems II are all about keeping data in control. Customers need technical and organizational concepts to meet the EU regulations.
Data protection concepts must provide companies with the greatest possible control and transparency over their sensitive data and services in the cloud. Best practices rely on data residency controls i.e. data must be processed and stored within the EU; moving data outside the EU is strictly prohibited. Only EU staff are allowed to handle support. Moreover, security guardrails and encryption methods must make it impossible for unauthorized persons to access data.
Legal requirements are often met with these basic measures.
As AWS' premier partner with German headquarters and EU operations, T-Systems is subject to and compliant with regional regulations. It has meticulously defined four pillars for data protection:
Let us help you to embark on a secure cloud journey and maintain your data protection in a constantly evolving regulatory landscape.