Not all clouds are dark – Online thinking after Cambridge Analytica Facebook scandal

Since the now infamous Cambridge Analytica story broke in March – where it emerged the British data firm was able to access information from 50 million Facebook users without their permission via a third-party app – cloud security credentials have been thrust into the spotlight. 

Businesses which entrust third-party IT solutions providers, such as Penta, to look after their data may be concerned how easily Cambridge Analytica was able to access vast amounts of personal information without permission. But, despite such a massive breach from one of the world’s largest websites, it is important to recognise the key differences in the types of cloud systems found online.

Facebook – and many other internet giants, such as Google and Twitter – use public cloud systems. Essentially, this means those using these services sign up to give them their data, and agree to allow it to be passed on to third-party businesses, such as advertisers. This helps those platforms target users with adverts to match their interests and searches. 

Vulnerable

Additionally, if your company’s data is stored on a public cloud, then that same cloud system could also be holding data for other clients. It is this sharing of network systems which makes public clouds cheap to use, but the downside is your data is much more vulnerable than it could be on a private cloud.

However, Penta only uses private cloud systems, which, as well as being physically being stored in a secure data center in Switzerland, the digital contents are also secure from any third parties, partners or otherwise, as Farhad Khalilnia, founder and CEO of Penta, explains:

“In a private cloud environment, the provider behaves like a private bank. We manage the container for the data but not its contents, meaning we have no access to clients’ data. All the contents of a private cloud are securely encrypted.

“Each client’s data is kept private and stored on its own server, meaning each client can be sure their data is safe. We act as the custodian to our clients’ data. We protect it but we have no access to it.”

Scalable

Another advantage to having access to your own private cloud is it is easily scalable – an important element to consider if you look after the IT solutions for an evolving business.

And to ensure it offers the most stringent cloud security systems, Penta routinely invites some of the world’s best ethical hackers to test the systems for weaknesses, ensuring Penta’s multi-layered security systems stand up to the latest cyber crime techniques.

Cloud security and GDPR

The extra level of cloud security offered by private cloud systems is also beneficial when it comes to many businesses’ legal responsibilities. As of next month, the European Union’s General Data Protection Regulations (GDPR) come into force, with the threat of huge fines for businesses which fail to comply with the tougher legislation.

For more on what the GDPR legislation means for your business, check back in on Penta’s blog next week.

Seeing through the clouds

 Recognising your clouds
 How cloud security varies online
 Microsoft

 Meet the ethical hackers
Hackers working to keep data safe
 Mashable

 More than a band aid
 How Britain’s NHS turned to ethical hackers 
 National Health Service