New guidelines to help EU businesses use the Cloud

Guidelines to help business users save money and get the most out of cloud computing services are being presented to the European Commission today. Cloud computing allows individuals, businesses and the public sector to store their data and carry out data processing in remote data centres, saving on average 10-20%.

The guidelines have been developed by a Cloud Select Industry Group as part of the Commission’s European Cloud Strategy to increase trust in these services. Contributors to the guidelines include Arthur's Legal, ATOS, Cloud Security Alliance, ENISA, IBM, Microsoft and SAP, Telecom Italia, (complete member list here).

Today's announcement is a first step towards standardised building blocks for Service Level Agreements (SLAs) terminology and metrics. An SLA is a part of a service contract that defines the technical and legal aspects of the service offered. The recent findings of the Trusted Cloud Europe survey show SLA standards are very much required by cloud users.

These guidelines will help professional cloud users ensure essential elements are included in plain language in contracts they make with cloud providers. Relevant items include:

  •  The availability and reliability of the cloud service,
  • The quality of support services they will receive from their cloud provider
  •  Security levels
  • How to better manage the data they keep in the cloud.

 

As a next step, the European Commission will test these guidelines with users, in particular SMEs. It will also be discussed within the Expert Group on Cloud Computing Contracts set by the Commission in October 2013. This discussion will also involve other C-SIG activities, for example the data protection Code of Conduct for cloud computing providers that was prepared by the C-SIG on Code of Conduct. The draft Code of Conduct has been presented to the Article 29 Data Protection Working Party (European Data Protection Authorities).

This initiative will have deeper impact if standardisation of SLAs is done at international level, e.g. through international standards, such as ISO/IEC 19086. To this end, the C-SIG on SLAs is also working with the ISO Cloud Computing Working Group, to present a European position on SLA Standardisation. Today's SLA guidelines will thus feed into ISO's effort to establish international standards on SLAs for cloud computing.

More and reference: EC Press Release