ISO 27018

First published in August 2014, ISO 27018 governs the processing of personal data in the cloud and provides a useful privacy compliance framework for cloud services providers and addresses processor obligations under EU law. It is the first privacy-specific international standard for the cloud and seeks to address such issues as keeping customer information confidential and secure and preventing personal information from being processed for secondary purposes without user consent.

Calligo is currently aligning itself to ISO 27018 with the objective of finalising already excellent cloud specific security measures to complement existing and certified security risk management policies and procedures through ISO 27001. It is our intention to officially certify against ISO 27018 once a UKAS recognised certification is obtainable.

ISO 27018