Cybersecurity and Liability in a Big Data World (original) (raw)

19 Pages Posted: 10 Aug 2018

Date Written: July 2018

Abstract

The interplay between big data and cloud computing is without doubt simultaneously promising, challenging and puzzling. The current technological landscape is not without paradoxes and risks, which under certain circumstances may raise liability issues for market operators. In this article we illustrate the several challenges in terms of security and resilience that market operators face since overcoming those challenges is of strategic importance for businesses wishing to be deemed privacy-respectful and reliable market actors. After a brief overview of the potentialities and drawbacks deriving from the combination of big data and cloud computing, this paper illustrates the challenges and the obligations imposed by the European institutions on providers processing personal data – pursuant to the General Data Protection Regulation – and on providers of digital services and essential services – according to the NIS Directive. We also survey the European institution’s push towards the development and adoption of codes of conduct, standards and certificates, as well as its last proposal for a new Cybersecurity Act. We conclude by showing that, despite this articulate framework, big data and cloud service providers still leverage their strong bargaining power to use “contractual shield” and escape liability.

Keywords: Big Data, Security, Liability, NIS Directive, GDPR, Cloud, ISP, Cybersecurity Act

Suggested Citation: Suggested Citation

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Feedback to SSRN

If you need immediate assistance, call 877-SSRNHelp (877 777 6435) in the United States, or +1 212 448 2500 outside of the United States, 8:30AM to 6:00PM U.S. Eastern, Monday - Friday.