If you do not have a society account or have forgotten your username or password, please contact your society. Do not use an Oxford Academic personal account.
In Part II, published in the next issue, we discuss how these 20 cloud providers treat data disclosures to third parties, including law enforcement agencies and their attitude towards specific individual rights provided under the Data Protection Directive. Part I discusses individuals' right to have their personal data processed fairly and lawfully, the right to be informed about the collection of data, the specific purposes of processing, and the way their data may be shared with third parties. This article identifies some common approaches adopted by providers as well as certain mismatches between their various legal documents, and it highlights the advantages and disadvantages of various practices found in the study. Our discussion focusses on how these 20 cloud providers treat various key rights that individuals have under data protection law in the EU either when they contract directly with a cloud provider or when they access cloud services through a business or institution, such as their employer.
This article is an empirical study of the Terms of Service and Privacy Policies of 20 cloud providers, and it is provided in two parts.