Although their tone reminds us vaguely of the U.S. Miranda warning, the spirit of these cloud services rights and responsibilities outlined by the Gartner Global IT Council for Cloud Services serve as a best-practices guideline for enterprises looking to deploy cloud-based solutions. The Council, which consists of CIOs of large enterprises that consume cloud services and Gartner analysts, has made it a priority to identify the key rights of cloud service consumers and how these might be upheld.
No. 6: You have the right to know what security processes the provider follows
With cloud computing, security breaches can happen at multiple levels of technology and use. Cloud service customers must understand the processes a provider uses, so that security at one level (such as the server) does not subvert security at another level (such as the network). Without this knowledge, service customers risk security violations caused solely by the provider not accounting for the ways in which organizations or consumers might use a service. Service consumers also need to understand a provider's business continuity plans, so that they can ensure that their own operations continue in an emergency. Service providers are not consistent in explaining either their security processes or their business continuity plans.