Latest publications

#23 - Enabling Cloud Adoption Across Europe
How Software Escrow can help organisations manage risk in the cloud
Authors: Jamie Mackay, Charles Brooks, Martin Andenmatten
...
Cloud computing undoubtedly offers considerable advantages and great benefits over traditional IT operating models. Marc Andreessen penned his famous “Why Software Is Eating the World” essay in The Wall Street Journal five years ago. And yet many questions about the associated risks remain unanswered. Also the questions about liability and access to software solutions, which were provided on behalf of customers. Are escrow agreements also possible in the cloud and what needs to be considered here?
This white paper gives answers to those questions. It was created in a cooperative process between EuroCloud Switzerland, Glenfis and NCC Group experts Jamie Mackay and Charles Brooks who with great personal commitment, assumed the leading role in terms of content - elaborating every detail over several sessions with me.
We hope you’ll find it useful on your journey to successfully transforming your financial service solution into the cloud.
Zürich, September 2019

#22 - The Looming Clouds
How and why cloud services are reshaping the future of financial services in Europe
Authors: Guido Greber, Konstantin Yershov
...
The financial services industry is confronting challenges across the globe. Externally, it must deal with new regulatory demands for greater transparency, new consumer demands, shareholders calling for faster growth and higher margins, and disruptive competition from both familiar and non-traditional actors. Internally, financial services firms grapple with legacy systems, ossified IT systems, and more.
Cloud computing offers many attractive benefits in this context. Chief among them are the ability to strengthen and streamline a firm’s IT ecosystem, lower operational costs, and shorten time-to-market windows. Cloud computing can make a wide range of financial services operations cheaper, faster, safer, and smarter.
Yet a surprising number of firms have yet to take the plunge and implement a robust cloud strategy. Recent surveys suggestion that 43 percent of banks do not have a cloud strategy or have only started implementing basic cloud practices, Two-thirds say that fewer than half of their business lines are currently using the cloud.
This paper will trace the drivers of change across the financial services industry to illustrate the trend towards cloud computing. Common challenges banks encounter on their drive to the cloud will then be discussed. We will conclude with some discussion of how banks can overcome these challenges.
This Whitepaper was created in a cooperative process between Guido Greber Technology Advisory from Accenture and Konstantin Yershov. Financial Services Solution Architect from Red Hat: both proven financial services and cloud management experts.
We hope you’ll find it useful on your journey to successfully transforming your financial service solution into the cloud.
Zürich, February 2019

#21 - A Consideration of accelerated migration of on-premises VMs to the Google Cloud platform using streaming technologies
TECHNICAL STUDY
Authors: Kamil Glowinski, Mag. Christian Gossmann, Andreas Krawinkler
...
By using cloud services, organizations can provide their application and server landscape through a pool of resources. That there is no way around cloud solutions in terms of elasticity and competitiveness, has meanwhile penetrated to most companies. However, the migration and successive “cloudification” of the servers and services often represents a major obstacle for many companies. In many cases, it lacks or fails in a migration strategy, or in the know-how of the persons involved. An essential migration component to a cloud service provider is the automated migration of services and servers to such. In such a project, IT service providers and IT departments are equally required to contribute their experience and to keep the degree of automation very high, if possible. It is important to analyze the processes and to work out which steps can be carried out fully automatically. Without automation, there are many sources of error and little chance of success.
This document focuses on the accelerated movement of virtual servers and their applications using streaming technology to a cloud service provider. The primary consideration is the technology of the solution used and the availability and liability SLAs. In the concrete case of application, the example of the challenge of such an endeavor is shown and an attempt is made to clarify the resulting difficulties and risks.

#21 - Betrachtung einer beschleunigten Migration von on-premises VM’s in die Google Cloud Plattform mittels Streaming Technologien
TECHNISCHES STUDIUM
Autoren: Kamil Glowinski, Mag. Christian Gossmann, Andreas Krawinkler
...
Durch die Verwendung von Cloud Diensten bietet sich Unternehmen die Möglichkeit ihre Applikations- und Serverlandschaft über einen Pool von Ressourcen bereitzustellen. Dass in Sachen Elastizität und Wettbewerbsfähigkeit kein Weg an Cloud Lösungen vorbeiführt, ist mittlerweile zu den meisten Unternehmen durchgedrungen. Die Migration und sukzessive “Cloudifizierung” der Server und Services stellt allerdings für viele Firmen oftmals einen großen Hemmschuh dar. Vielfach fehlt oder scheitert es an einer Migrationsstrategie, bzw. am Know-how der handelnden Personen. Eine wesentliche Migrations- Komponente zu einem Cloud Service Provider stellt das automatisierte migrieren der Services und Server zu einem solchen dar. Bei einem derartigen Vorhaben sind IT-Dienstleister und IT–Abteilungen gleichermaßen gefordert ihre Erfahrung einzubringen und den Automatisierungsgrad nach Möglichkeit sehr hoch zu halten. Wichtig ist dabei, die Abläufe zu analysieren und herauszuarbeiten welche Schritte vollautomatisch durchgeführt werden können. Denn ohne Automatisierung gibt es erheblich viele Fehlerquellen und kaum Erfolgsaussichten.
Dieses Dokument fokussiert sich auf das beschleunigte Verschieben von virtuellen Servern und deren Applikationen mittels Streaming Technologie zu einem Cloud Service Provider. Primär wird dabei die Technologie der verwendeten Lösung und die SLAs betreffend Verfügbarkeit und Haftung betrachtet. Im konkreten Anwendungsfall wird durch ein Beispiel die Herausforderung eines solchen Unterfangens gezeigt und versucht, die dabei entstehenden Schwierigkeiten und Risiken zu verdeutlichen.

#20 - Cloud Brokerage
Introduction to the concept, its business model, the associated challenges and their potential solutions.
...
The following article represents the first part of a three-part series on cloud service certifications and personal certifications in the area of cloud computing along with their importance and areas of application, with a focus on EuroCloud StarAudit.
This first part deals with the topic of cloud brokerage, covering the definition of terms, various business models and challenges of cloud brokers and their approaches to solutions.
The second article discusses the need for and business case of cloud service certifications as well as the difference between certifications and quality seals or attestations. It also includes a market overview featuring basic descriptions of the individual certifications and selected or publicly accessible requirement catalogues. These catalogues are then compared to the requirement catalogue of the EuroCloud StarAudit certification.
The third and last article deals with the importance and significance of personal certifications and presents the StarAudit Academy, its individual accreditations and their added value.
The aim of this series of articles is to raise awareness and demonstrate the need for and undeniable benefits of cloud service certifications such as EuroCloud StarAudit.
This guideline was created over the course of more than one year in a cooperative process between EuroCloud and the author Mr. Norbert Fesel, whom I wish to thank for the efforts.
I hope that you enjoy reading this guideline and can benefit from it in your day-to-day work.

#19 - Security analysis of a cloud backup service based on a smart site failover
TECHNICAL STUDY
Authors: Kamil Glowinski, Andreas Krawinkler, Christian Gossmann (Cloud Computing Engineering, Fachhochschule Burgenland)
...
The opportunities in the cloud computing sector are characterized by rapid growth. This development is based on manyfold causes from both a technical and monetary point of view. Cloud solutions have become important competitive factors in the hosting industry and data center operators. The growing supply of cloud providers and their quality also increases the pressure on on-premises data centers, which inevitably causes many IT departments to be compared and measured against external cloud providers.
Cloud computing offers companies many new opportunities, but at the same time presents them with new challenges. Today, many decision makers of medium-sized and large companies consider cloud services to be important and necessary in order to optimize their own business processes and to be future-proof and competitive. In many cases, the question of data security and compliance is asked in this context and triggers uncertainty and discomfort in the participants.
This document focuses on the backup, failover, and recovery of a virtual component (server) to a cloud service provider, and considers primarily the security aspect of interfaces, as well as any weaknesses and risks of such solutions. In the case of specific application, the example of the challenge of such an endeavor is shown and an attempt is made to clarify the resulting challenges and risks.
Upcoming Events
More events are coming soon. Stay tuned!
Latest News
Smile, you're being recorded!
Following the American and European trend, Portugal is now one of the countries that has determined the use of...
As the last EU state, Slovenia passed Personal Data Protection Act
As of 2023 data privacy in Slovenia will be governed by the newly passed Personal Data Protection Act (ZVOP-2),...
What steps should employers take when publishing the labor act on the notice...
According to the Labor Law of the Republic of Serbia, if an employee refuses to accept at the premises of the...
New Cookie Regulations in Japan – Amendment of Telecommunications Business Act
The Telecommunications Business Act (“TBA”) is a law administered by the Ministry of Internal Affairs and...
Authority is planning to overhaul the decade old data protection regime in Hong...
The Hong Kong Privacy Commissioner for Personal Data has release signs of revamping the data protection regime in...
Brazilian DPA can start to apply fines now
After two years of the law in force, and a countless actions to ensure compliance with the data protection...
The Data Protection Commission’s 2022 Annual Report
On 7 March 2023, the Data Protection Commission (“DPC”) released its 2022 Annual Report. We have summarized the key...
2022 was a busy year for all privacy practitioners. This active spirit did not...
Among the privacy changes some interesting Legislative amendments were proposed to the Israeli Privacy Protection...
Transparency in the sights of the Luxembourg data protection Authority
As in the past, the Luxembourg data protection Authority (the “CNPD”) launched in 2020 a thematic investigation on...
I Meta Tracking Tools Illegal – Austrian Data Protection Authority Holds That...
The Austrian Data Protection Authority (DPA) decided (6th of March 2023, D155.028, 2022-0.726.643) that the use of...
Facebook is in trouble again …
… And this time it’s not Max Schrems who’s behind it.
On March 15, 2023, the Amsterdam District Court ruled that...
Am I My Brother’s Keeper?
Understanding the Importance of Data Protection Compliance Management in Processing Chains: Key Takeaways from the...
The privacy risks of the “virtual friend”: the Italian DPA clamps down Replika
The Italian Data Protection Authority (“Garante Privacy”) has ordered the limitation of the data processing...
The ‘Chat GPT Effect’ – Parsing Privacy and AI Regulation in India
The increasingly common use of AI in our daily lives raises multiple concerns, particularly around data privacy and...
2022 and 2023 in Baltic Data Protection
At the end of January, we celebrated Data Protection Day. To mark that annual occasion, TGS Baltic’s Data...
Non-material Damage for Data Protection Breaches before the Irish and EU Courts...
Data protection claims are in the dock. The Irish Circuit Court has temporarily halted proceedings for non-material...
Partners

Aguilar Castillo Love
Costa Rica

HEKA LAW FIRM
Ecuador

Rebaza, Alcázar & De Las Casas
Peru

Özdağıstanli Ekici Attorney Partnership
Turkey

William Fry
Ireland

BGBG
Mexico

Legal IT Abogad@s
Panama

Arthur Cox LLP
Arthur Cox LLP

Stephenson Harwood LLP
United Kingdom

Seyfarth Shaw
Hong Kong

BTG Legal
India

Gerrish Legal SARL
France

ECIJA GPA
ECIJA GPA

FTR
Brazil

OYAT
France

Dentons Paz Horowitz
Ecuador

SimpLEGAL
Hungary

Spirit Legal
Germany

Marval O’Farrell Mairal
Argentina

Sourcing International
Austria

esb legal

99 AVOCATS ASSOCIES
Monaco

PwC Legal
Estonia

Time.lex
Belgium

Bort & Bird
Poland

Lexing
France

Malta IT Law
Malta

Wolf Theiss
Romania

Gjessing Reimers
Norway

Kambourov & Partners
Bulgaria

R&P Legal
Italy

JK Group
Slovenia

Nielsen Legal
Czech Republic

EuroLawyer
Austria

C-Lex
Italy

Synch
Sweden

BCH Chlipala
Slovakia

Zeya
Greece

Derra, Meyer & Partner
Germany

BL&Z Law Offices & Notaries
Israel

Laux Lawyers
Switzerland

Abreu Advogados
Portugal

CIE

Cordemeyer & Slager

Tassos Papadopoulos & Associates

Andersen Tax & Legal

Womble Bond Dickinson

Etude Reding

International Cybersecurity Forum 2019

Astrea

Gun+Partners

BCSC

Business Reporter

Stankovic & Partners

Boris Guljas

TGS Baltic

Fox Rothschild

ICENT
Croatia

AHW Law

OBLP

de la cruz beranek Attorneys at Law Ltd

Traple Konarski Podrecki & Partners

Molitor

Matsuda & Partners

Dimitrov, Petrov & Co.

SGS Hong Kong Limited

Alliance Law Firm

Setterwalls

Bona Fide

ALV

Pinsent Masons

Gowling WLG

Živković Samardžić

advores Advokater & Rechtsanwälte
Denmark

BELEN ARRIBAS SANCHEZ

ECIX
Spain