On 16 March the European Data Protection Supervisor published new Guidelines on the use of cloud computing services by the European institutions and bodies.
The Guidelines provide suggestions and instructions for EU institutions in order to further compliance with Regulation (EC) No. 45/2001. The Guidelines deal specifically with:
– how to assess the appropriateness of the option to use cloud computing
– how data protection requirements need to be taken into account in the identification and choice of the cloud computing procurement processes
– relevant organisational and technical safeguards.
You can read the complete Guidelines here.