Government // Cloud computing
Commentary
5/2/2014
09:30 AM
Ben Young
Ben Young
Commentary
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Data Protection Fears Vs. US Cloud Market

Data sovereignty is so important to businesses that 70% would trade cloud performance for more data control, research says. Where does that leave the post-Snowden US cloud market?

Business attitudes toward the cloud have changed a lot in recent years, but one thing has not: cloud's growth within small businesses, and now larger enterprises, as a standard component of IT operations. The cloud's continued growth is inevitable, because it's one of the best opportunities for organizations to achieve greater IT flexibility, cost efficiency, and value from their data. This year alone, the global cloud market is set to grow more than 126%, according to GigaOm Research.

Yet, despite the prospects for growth, there's room for doubt that the US will dominate the global cloud market. The NSA snooping revelations that broke during last year's "Summer of Snowden" stoked fears around security, compliance, and privacy in the cloud, particularly for businesses in highly regulated industries, and in countries with strict data privacy laws.

When Forrester analyst James Staten notoriously projected last August that the US cloud market would miss out on $180 billion in revenue by 2016 as a result of NSA concerns, people in all corners of the tech industry sat up and listened. Since then, unlikely dissidents, including Google, Microsoft, and Facebook, have made their case to the US government that NSA surveillance needs to be curtailed, or it could seriously hurt their business.

[New disclosures from former NSA contractor Edward Snowden detail the National Security Agency's RETRO system. See NSA Records Billions Of Foreign Phone Calls.]

Saber rattling aside, one has to wonder: Just how doomed is the US cloud market? And should government agencies, including the NSA, be concerned?

Unfortunately, the threat to the US cloud market, due to worries about government surveillance, looks real. Non-US businesses are increasingly concerned about the privacy and security of their (and their customers') data. In fact, a recent survey from ResearchNow, commissioned by Peer 1 Hosting, showed 25% of UK and Canadian businesses plan to pull company data out of the US in 2014 as a result of the NSA revelations. The survey also found that most companies are thinking differently about the location of their data post-Snowden: 82% said privacy laws are a top concern for them when choosing where to store data, and 81% want to know exactly where their data is being hosted.

(Source: OpenClip.org/ainara14)
(Source: OpenClip.org/ainara14)

Wariness about US data laws is not a new thing. Many European and Canadian companies have avoided hosting data in the US since the USA Patriot Act in the early 2000s, which permitted the government to inspect data on any servers in the US, even if the data was owned by non-US customers. European companies' concerns around the Patriot Act grew so strong by 2011 that it began to hamper the growth of the cloud industry in Europe, as service providers in France, Germany, and elsewhere limited their customer base by "walling off" their clouds from North America. In fact, an Informa report revealed that European providers accounted for just 7% of carrier cloud investments worldwide in 2011.

Such nuances of the global cloud market used to seem like "somebody else's problem" to US government agencies. But now, with the Snowden leaks confirming data privacy concerns, hesitance to store data in the US may actually boost the growth of the cloud industry in Europe and Canada, to the detriment of the US economy, as customers seek ways to keep their information as far from the NSA as possible.

The data sovereignty issue is in fact so important that 70% of the businesses surveyed by ResearchNow would give up some level of performance to ensure they have control over their data. It's not unreasonable to assume European cloud upstarts can snatch some of their business.

Meanwhile, US government policy mandates have called federal CIOs and other IT executives to adopt cloud technologies, beginning with the Federal Cloud Computing Initiative (FCCI) launched five years ago. The intent of the FCCI was to cut IT costs for federal agencies, but if the number of US cloud vendors begins to dwindle post-Snowden, it could mean government IT

Next Page

Ben Young is General Legal Counsel at Peer 1 Hosting, where he defends, protects, and enforces Peer 1's legal and business interests, identifies risks, and finds the right solutions to mitigate them. View Full Bio

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Ninja
5/10/2014 | 6:21:52 AM
Re: security solution
Bob,

"One of the most common causes of data getting in the wrong hands is the loss of mobile devices that often contain a frightening amount of private information."

True. And thanks for sharing the link to the tracer tags site. It's very useful. It's great you got your lost laptop returned.

However, if the device is stolen instead of lost the thief is not going to contact you to return you the device. In that case, deleting your data remotedly is all that can help.  

-Susan
wkcantab
50%
50%
wkcantab,
User Rank: Apprentice
5/4/2014 | 11:03:32 PM
Raising Awareness of Data Privacy Rules for SMEs
Excellent article. Data privacy is such a key consideration when using cloud providers and your rightly point out the huge deficiency in business' understanding of the laws. This is particularly true for businesses which operate internationally and must comply with the laws where their customers reside. And "cloud" is a very broad term -- even a process such as email outsourcing can get a company caught up in needing to be aware of the relevant data privacy practices of their third-party provider.

Wendy Kennedy Esq, author, Data Privacy: A Practical Guide (April, 2014)

@wkcantab
BobH088
50%
50%
BobH088,
User Rank: Apprentice
5/4/2014 | 7:11:45 PM
security solution
One of the most common causes of data getting in the wrong hands is the loss of mobile devices that often contain a frightening amount of private information. I want to share a protection option that worked for me. Tracer tags (mystufflostandfound.com) let someone who finds your lost stuff contact you directly without exposing your private information.  I use them on almost everything I take when I travel like my phone, passport and luggage after one of the tags was responsible for getting my lost laptop returned to me in Rome one time.
Thomas Claburn
50%
50%
Thomas Claburn,
User Rank: Author
5/2/2014 | 5:40:22 PM
Data ownership in the cloud
Is there a legal structure that could be used to grant cloud clients temporary ownership over the remote hardware they use or temporary ownership of the space their equipment occupies? This would deny the cloud provider the lawful authority to provide access to the hardware in the event of a subpoena.
Gov Cloud: Executive Initiatives, Enterprise Experience
Gov Cloud: Executive Initiatives, Enterprise Experience
In this report, we'll examine the use of cloud services by government IT, including the requirements, executive initiatives and service qualifications, and auditing and procurement programs that make government cloud adoption unlike that in the private sector.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest - July 22, 2014
Sophisticated attacks demand real-time risk management and continuous monitoring. Here's how federal agencies are meeting that challenge.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.