Skip to main content
SpringerLink
Log in

GDPR Compliance: Proposed Technical and Organizational Measures for Cloud Providers

  • Conference paper
  • First Online:
Computer Security (CyberICPS 2019, SECPRE 2019, SPOSE 2019, ADIoT 2019)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 11980))

Abstract

The process of GDPR compliance for cloud computing environments may turn out to be a demanding process in terms of the technical, organizational and procedural measures that should be adopted. This paper identifies the requirements and the appropriate countermeasures for GDPR compliance in cloud environments. Furthermore, it describes the necessary GDPR related roles and separates the requirements and measures in accordance to the cloud architecture (IAAS, PAAS, SAAS).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Bird & Bird, Guide to the General Data Protection Regulation, January 2017

    Google Scholar 

  2. Cloud Security Alliance, Code of Conduct for GDPR Compliance, November 2017. https://downloads.cloudsecurityalliance.org/assets/research/gdpr/CSA_Code_of_Conduct_for_GDPR_Compliance.pdf

  3. Regulation (EU) 2016/679 of the European Parliament and of the Council, The European Parliament and the Council of the European Union, 27 April 2016. https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&qid=1485368166820&from=en

  4. Microsoft, Accelerate GDPR compliance with the Microsoft Cloud, July 2017

    Google Scholar 

  5. Amazon Web Services, Navigating GDPR Compliance on AWS (2018)

    Google Scholar 

  6. Google Cloud Whitepaper, General Data Protection Regulation (GDPR), May 2018

    Google Scholar 

  7. Deloitte, Data Privacy in the cloud, September 2015

    Google Scholar 

  8. LexisNexis, GDPR and codes of conduct in SaaS, January 2019

    Google Scholar 

  9. Oracle Cloud Infrastructure, Oracle Cloud Infrastructure and the GDPR, European Union General Data Protection Regulation, April 2018

    Google Scholar 

Download references

Acknowledgment

This work has been partially supported by the Research Center of the University of Piraeus.

Author information

Authors and Affiliations

  1. Department of Digital Systems, University of Piraeus, 18532, Piraeus, Greece

    Zafeiroula Georgiopoulou, Eleni-Laskarina Makri & Costas Lambrinoudakis

Authors
  1. Zafeiroula Georgiopoulou
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Eleni-Laskarina Makri
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Costas Lambrinoudakis
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Zafeiroula Georgiopoulou .

Editor information

Editors and Affiliations

  1. Open University of Cyprus, Latsia, Cyprus

    Sokratis Katsikas

  2. IMT Atlantique, Brest, France

    Frédéric Cuppens

  3. IMT Atlantique, Brest, France

    Nora Cuppens

  4. University of Piraeus, Piraeus, Greece

    Costas Lambrinoudakis

  5. University of the Aegean, Mytilene, Greece

    Christos Kalloniatis

  6. University of Toronto, Toronto, ON, Canada

    John Mylopoulos

  7. Georgia Institute of Technology, Atlanta, GA, USA

    Annie Antón

  8. University of Piraeus, Piraeus, Greece

    Stefanos Gritzalis

  9. Technical University of Berlin, Berlin, Germany

    Frank Pallas

  10. Alexander von Humboldt Institute for Internet and Society, Berlin, Germany

    Jörg Pohle

  11. Ruhr University Bochum, Bochum, Germany

    Angela Sasse

  12. Technical University of Denmark, Kongens Lyngby, Denmark

    Weizhi Meng

  13. University of Plymouth, Plymouth, UK

    Steven Furnell

  14. Télécom SudParis, Evry, France

    Joaquin Garcia-Alfaro

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Georgiopoulou, Z., Makri, EL., Lambrinoudakis, C. (2020). GDPR Compliance: Proposed Technical and Organizational Measures for Cloud Providers. In: Katsikas, S., et al. Computer Security. CyberICPS SECPRE SPOSE ADIoT 2019 2019 2019 2019. Lecture Notes in Computer Science(), vol 11980. Springer, Cham. https://doi.org/10.1007/978-3-030-42048-2_12

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-42048-2_12

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-42047-5

  • Online ISBN: 978-3-030-42048-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation