A comprehensive model for ensuring data compliance in cloud computing environment

Adebola Folorunso 1, *, Olufunbi Babalola 2, Chineme Edger Nwatu 3 and Adebisi Adedoyin 4

1 School of Business, Technology and Health Care Administration Capella University, Minneapolis, MN, USA 55402.
2 Carnegie Mellon University, 5000 Forbes Avenue Pittsburgh, PA 15213, USA.
3 Western Illinois University School of Computer Sciences Stripes Hall 44, 1 University, Circle Macomb IL 61455-1390 USA
4 Bournemouth University Department of Information Technology United Kingdom.
 
Review Article
World Journal of Advanced Research and Reviews, 2024, 24(02), 1983–1995
Article DOI: 10.30574/wjarr.2024.24.2.3514
 
Publication history: 
Received on 07 October 2024; revised on 17 November 2024; accepted on 20 November 2024
 
Abstract: 
As organizations increasingly adopt cloud computing, ensuring data compliance has become a critical priority. Cloud environments pose unique challenges in meeting regulatory requirements due to their distributed and often multi-tenant nature. This review presents a comprehensive model for achieving data compliance in cloud computing, addressing essential aspects such as data privacy, security, sovereignty, and governance. The model emphasizes a structured, layered approach to compliance, integrating risk assessment, data governance, continuous monitoring, and incident management to ensure compliance throughout the data lifecycle. Key components of the proposed model include robust data privacy and protection mechanisms aligned with global regulations such as GDPR and CCPA, data security protocols for safeguarding confidentiality and access control, and data sovereignty policies to handle jurisdictional requirements and cross-border data flows. Additionally, continuous monitoring and automated auditing tools enhance real-time compliance management, while incident management procedures prepare organizations to respond promptly to breaches or policy violations. The framework also incorporates advanced technological solutions, including compliance automation, data loss prevention, and blockchain for traceability, to streamline compliance tasks and improve transparency. By addressing both the technical and governance aspects of data compliance, this model supports organizations in navigating complex regulatory landscapes across multi-cloud and hybrid environments. The review highlights best practices for ensuring compliance, such as regular policy updates, employee training, and third-party compliance management, to sustain long-term adherence. As the regulatory landscape evolves and new privacy-preserving technologies emerge, this model offers a scalable and adaptive approach, positioning organizations to manage data compliance effectively within dynamic cloud infrastructures. This comprehensive approach ensures secure, compliant data operations, fostering trust and accountability in cloud computing environments.
 
Keywords: 
Data Compliance; Cloud Computing; Environment; Comprehensive Model
 
Full text article in PDF: 
Share this