There is always a lot of discussion around data security and best practice. And ususally the conversation ends up at ISO/IEC 27018:2014. This Standard establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment. Today we look at Compliance Handling Discussions, in the Healthcare and Life Sciences Sector.
As ISO/IEC 27018:2014 is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, which provide information processing services as PII processors via cloud computing under contract to other organizations Pendata is understandably a strong advocate of AWS’s position in facilitating compliance within cloud hosted applications.