Edinburgh Napier University

  Cloud services vary from data storage and processing to software provision, posing requirements for high availability and on-demand commitment-free provision of services. Cloud providers must provide information through their privacy policy and/or upon request of the data subjects. Cloud providers must support, in an easy and safe way, data subjects to exercise their right to object against their personal data processing. Cloud providers should satisfy all requests of the data subjects to access/rectify their personal data. The first category includes the threats against the infrastructure and the host of a cloud system. Cloud services employed, operational models and the technologies used to employ cloud services are the sources of the new threats. The majority of threats in cloud systems are relevant to the entire cloud infrastructure. Employees can often pose a serious threat to the cloud system. Deficient training or negligence is heavily concerned with erratic and unpredictable actions of the average employee.