Choosing a cloud provider: The importance of compliance transparency
Looking beyond HIPAA, SOX or PCI-DSS compliance claims
The scary part about shopping for a cloud solution is that even if the managed services provider claims compliance, this doesn’t mean that they actually are compliant.
In fact, the provider may not even realise they are being misleading. Because regulatory compliance is too often left open to interpretation, your definition of HIPAA, SOX or PCI-DSS compliance might be different than your cloud provider’s.
This gap becomes even more critical as today’s information technology environments are being asked to house an expanding library of personal, private and sensitive data.
Whether you are aware of it or not, new regulations and industry standards are seemingly being created every day, meaning that your cloud provider may play a critical role in your regulatory auditing process.
The trick then becomes finding a provider who does more than offer the mere promise of compliance - And instead find someone who offers the transparency and accountability to guarantee that your cloud infrastructure will continue to meet any and all changing industry standards.
This means searching for a provider who:
- Is upfront about the location of your data - Many cloud providers either do not disclose where the data lives, or may move your data through the course of normal operations. Please beware of providers who are unable to disclose this information, as auditing standards often require you to be able to disclose this information.
- Offers flexible cloud solutions – Many cloud providers offer one-size-fits-all environments and standardized hosting platforms. However, a truly compliant solution needs to be flexible enough to meet rigid and changing industry standards.
- Will work with your auditing team - Your cloud provider is offering more than a service. They should be your partner, willing to work with you to ensure total compliance.
By choosing a cloud provider who offers this type of auditing transparency, you will be able to engineer a cloud solution that not only meets your computing needs as they stand today, but one that is able to evolve as those needs change over time.
For more help on finding a cloud computing solution, download our Roadmap to Cloud Computing.
- » Uncovering the insight behind Gartner’s $331 billion public cloud forecast
- » Getting past cloud cost confusion: How to avoid the vendors' traps and win
- » The unforgiving cycle of cloud infrastructure costs – and the CAP theorem which drives it
- » A guide for database as a service providers: How to stand your ground against AWS – or any other cloud
- » VMware’s blockchain now integrates with DAML smart contract language