Action points

To establish a universally applicable standards framework through analysis of the existing certifications and standards frameworks. This will allow for the standardisation and harmonisation of cloud services, with additional criteria for specific application in certain business sectors.

In consultation with providers, users and branch organisations, to draft guidance for users on the important issues to be taken into account when selecting a cloud service and a provider.

In consultation with providers, branch organisations and user representatives, to work towards the establishment of ‘Rules for the cloud’. Alignment will expressly be sought with the code of conduct (Cloud Rule Book) for Gaia-X.

Research into potential innovative methods for demonstrating the reliability and security of cloud services. For instance, using technology for real-time monitoring of the reliable functioning of cloud services.

Together with regulators and other relevant parties, to condense the diverse forms of reporting on the reliability and security of cloud services into standardised accountability information for users and regulators’ auditors.

To participate in the Gaia-X Foundation, and specifically to join the working group with the remit ‘assurance’ (reliability and security) of cloud services.