Regulations on the cloud

Entendendo a computação em nuvem

Lis Sulmont

Curriculum Manager, DataCamp

Global map with a data center in the USA

Entendendo a computação em nuvem

Global map with data centers in the USA, Europe, and South America

Entendendo a computação em nuvem

Global map with data centers in the USA, Europe, South America, Africa, and Asia

Entendendo a computação em nuvem

Map with data centers globally and a user in Australia

Entendendo a computação em nuvem

Map with data centers globally and a user in Australia connecting to the data center in Asia

Entendendo a computação em nuvem

Map with data centers globally and a user in Australia connecting to the data center in Asia with an arrow on Australia

Entendendo a computação em nuvem

Map with data centers globally and a user in Australia connecting to the data center in Asia with an arrow on Asia

Entendendo a computação em nuvem

Map with data centers globally and a user in Australia connecting to the data center in Asia with an arrow on the USA

Entendendo a computação em nuvem

General Data Protection Regulation (GDPR)

  • Regulates how personal data is collected, processed, and stored from users in the EU
  • Examples:
    • Users must explicitly consent to data collection
    • Notify users of any data breaches
    • Personal data information must be encrypted, anonymized, and/or pseudonymized
    • Personal data can't leave EU borders, unless you can guarantee the same level of protection
  • Fine: 20 million Euros or up to 4% of the worldwide annual revenue
Entendendo a computação em nuvem

What is personal data?

Personal data is any information that relates to an identified or identifiable living individual. Different pieces of information, which collected together can lead to the identification of a particular person, also constitute personal data. [1]

  • Includes: home address, first name, last name, email address, location data, IP address, racial or ethnic origin, political opinions, sexual orientation, health related data
  • Personally identifiable information (PII)
1 https://ec.europa.eu/info/law/law-topic/data-protection/reform/what-personal-data_en
Entendendo a computação em nuvem

Other regulations

  • Brazil's Lei Geral de Proteçao de Dados (LGPD)
  • California's Consumer Privacy Act (CCPA)
  • USA's Health Insurance Portability and Accountability Act (HIPAA)
  • Japan's Act on Protection of Personal Information
  • Thailand Personal Data Protection Act (PDPA)
  • Canada's Personal Information Protection and Electronic Documents Act (PIPEDA)
Entendendo a computação em nuvem

Let's practice!

Entendendo a computação em nuvem

Preparing Video For Download...