Microsoft has admitted that no data from any country that is stored in
the 'cloud' is safe from the Patriot Act.
"Microsoft admits Patriot Act can access EU-based cloud data"
http://www.zdnet.com/blog/igeneration/microsoft-admits-patriot-act-can-access-eu-based-cloud-data/11225"At the Office 365 launch, Gordon Frazer, managing director of
Microsoft UK, gave the first admission that cloud data — regardless of
where it is in the world — is not protected against the USA PATRIOT
Act."
My understanding from some people I know in the Canadian government is
that Office 365 is being piloted in at least one government
organization (I can't find any on-line reference to this...).
<understatement>If this is the case, I would have say I am rather
concerned about this, particularly in the GoC context</understatement>
Relevant:
- June 2011: Microsoft: 'We can hand over Office 365 data without your
permission'
http://www.zdnet.com/blog/igeneration/microsoft-we-can-hand-over-office-365-data-without-your-permission/11041- July 2011: Patriot Act, not products, ups Cloud risks for CIOs
http://www.cio.com.au/article/392359/patriot_act_products_ups_cloud_risks_cios/?fp=4&fpid=56491- May 2011: Report on the 2010 Office of the Privacy Commissioner of
Canada's Consultations on Online Tracking, Profiling and Targeting,
and Cloud Computing
Office of the Privacy Commissioner of Canada
http://www.priv.gc.ca/resource/consultations/report_201105_e.cfm- Jan 2011: Cloud Computing Data Privacy and Security with Microsoft
CRM Online, BPOS and Office 365
http://www.switched-online.com/cloud-computing-data-privacy-with-microsoft-crm-online-bpos-and-office-365/- Jan 2009: Guidelines for Processing Personal Data Across Borders
Office of the Privacy Commissioner of Canada
http://www.priv.gc.ca/information/guide/2009/gl_dab_090127_e.cfm-Glen Newton
--
-