With the use of cloud computing services becoming increasingly popular for businesses, the Information Commissioner's Office has published guidance to emphasise that the responsibility for the protection of personal data remains with the business, even if the personal data is passed to a cloud network provider. The guidance includes advice on the different types of cloud service available, selecting a cloud network provider, assessing its security, deciding on the type of data that should be put into the cloud and the importance of entering into a contract with the provider.

Baker & McKenzie's IT/Commercial department has published a client alert on this subject which can be provided on request.

The guidance is available at: http://www.ico.gov.uk/news/latest_news/2012/~/media/ documents/library/Data_Protection/Practical_application/ cloud_computing_guidance_for_organisations.ashx