Cloud computing can make it easier for developers to meet an organization's compliance requirements, but it can also introduce new risks and run afoul of regulations that govern data. A panel of experts recommended that an organization document what processes cloud providers have in place to secure application data and safeguard privacy; communicate its requirements for applications to providers; understand how regulation affects development in external clouds; and know what liabilities apply if something goes wrong when it is no longer the primary custodian of data. In the cloud, every action is an invocation of a service and can therefore be monitored, logged or even rolled back, explained Peter Coffee, director of platform research for Salesforce.com.

More info: SD Times