Understanding ISO 27018 and Preparing for the Modern Era of Cloud Security

Presented by Foley Hoag LLP


Foley Hoag LLP

Seaport West
155 Seaport Boulevard
Boston, MA US 02210-2600

Directions »


May 14, 2015 8:00AM–10:00AM


New speaker added to panel: Sharon Gillett of Microsoft Research

Join us on May 14 for a seminar presented by Foley Hoag LLP and a panel of industry experts on ISO 27018, the new international standard governing the processing and protection of personal information by public Cloud Service Providers (CSPs). Even though this new standard is voluntary, it is widely expected to become the benchmark for CSPs going forward.

As the first and only international privacy standard for the cloud, ISO 27018 addresses the means of keeping customer information confidential and secure, as well as preventing personal information from being used for advertising or data analytics without customer approval. More importantly, adherence to ISO 27018 demonstrates that a CSP’s cloud privacy policies and practices are consistent with the industry’s best practices, both in the United States and the EU.

Our panel will discuss the delineations of ISO 27018 and the potential value ISO 27018 carries as the new standard in industries where protection of sensitive customer or business data is paramount.

Topics to be discussed:

  • What are the key data privacy and data protection issues companies should consider before moving to cloud computing technologies?
  • What are the key substantive requirements of ISO 27018 for handling customer data?
  • How does ISO 27018 adoption benefit customers in regulated industries such as healthcare and financial services?
  • How do the ISO 27018 requirements map against existing sector-based data privacy and security standards (e.g., HIPAA, SOC 2)?
  • What value is provided by third party verification (through accreditation) of ISO 27018 and other data privacy and security practices in cloud computing?