Huawei Cloud Helps You Keep Cloud Data Secure
Huawei Cloud Helps You Keep Cloud Data Secure
Your Responsibilities as the Data Owner
As the owner of content data on the cloud, you are responsible for its compliance and security. You need to formulate appropriate data protection policies and take proper measures based on your services and security risks. For example, you can select security services and features such as data encryption, data masking, data watermarking, disaster recovery and backup, security audits, and security policies, to help you keep cloud data secure and legally compliant. You can learn more about the best practices of related services on our website.
Huawei Cloud Responsibilities as the Cloud Service Provider
Huawei Cloud is responsible for providing you with a compliant and secure cloud infrastructure platform and services so that you can store and process your content data in a compliant and secure cloud environment within the scope of agreements between both parties and applicable laws. In addition, Huawei Cloud provides a wide range of security services, features, and solutions to help you build independent and controllable security capabilities and enhance security and compliance capabilities for content data on the cloud.
Huawei Cloud Data Security Management
Huawei Cloud Data Security Management
Organization Responsibilities
Huawei Cloud has established a comprehensive system for managing data security responsibilities. This system is an important support for security and compliance of Huawei Cloud data and for your content data on the cloud.
Regulations and Processes
To ensure continuous implementation of data security management requirements, Huawei Cloud uses dedicated data security processes and integrates security requirements into service processes.
Personnel Management
Huawei Cloud has a comprehensive security management system for its employees and partners. This system ensues that related personnel have great awareness of data security and the capability to secure cloud data.
Measurement and Supervision
Huawei Cloud has built a three-layer security measurement framework that includes three lines of defense to comprehensively evaluate data security measures and ensure that security requirements are always met.
Huawei Cloud Data Security Capabilities
Huawei Cloud Data Security Capabilities
Huawei Cloud Data Protection Resources
Huawei Cloud Data Protection Resources
Huawei Cloud Security White Paper
This document shares our security experience with you and the industry. We can together promote the openness and development of the cloud security industry.
Huawei Cloud Data Security White Paper
This document describes how Huawei Cloud protects your content data on the cloud and introduces security services and features that can help you further enhance cloud data security throughout the entire data lifecycle.
FAQs About Data Protection
FAQs About Data Protection
Which types of customer's cloud data does Huawei Cloud process?
Huawei Cloud processes the following types of data:
● Personal data: various types of information recorded electronically or otherwise relating to an identified or identifiable natural person, excluding information that has been anonymized. When you are interacting with Huawei Cloud, Huawei Cloud collects personal data that is sometimes required, for example, to provide you with certain services. We collect your personal data in the following scenarios: When you use a Huawei ID, we collect your username, mobile number, email address, and account information; when you use the address management service, we collect your recipient name, detailed address, postal code, and mobile number. For more scenarios, see the Privacy Statement.
Huawei Cloud respects and protects your personal data in accordance with Huawei Cloud Privacy Statement and other applicable laws. Huawei Cloud collects, stores, and uses your personal data in compliance with the data minimization principle, and takes comprehensive measures to secure your personal data.
● Content data: data stored or processed during the use of Huawei Cloud services, including but not limited to documents, software, images, and audio and video files. You have the control over your content data. You are responsible for the authenticity, accuracy, legality, and security of your content data. Huawei Cloud provides a wide range of security services for you to improve security and reduce data security risks.
Where is my content data stored?
Huawei Cloud has many regions and AZs deployed around the world and offers high-speed global network connections and localized services. You can select a region to purchase and deploy services as needed. The region you select is where your content data is stored. We will never move your content data across regions without your express authorization. For example, if your services are in a city around Dublin and you want to store your content data only in Dublin, you can select the EU-Dublin region to purchase and deploy services.
For more information about Huawei Cloud regions and AZs, see the global infrastructure distribution on Huawei Cloud website.
Does Huawei Cloud transfer data to other regions or countries?
Content data: You can decide where your content data is stored. Huawei Cloud will not transfer your content data to other regions unless required by applicable laws or explicitly authorized by you. If you need to transfer your content data across borders and need assistance from Huawei Cloud, you can contact us and authorize Huawei Cloud to transfer your content data. We will then provide necessary assistance in compliance with applicable laws and regulations.
Will Huawei Cloud ever access my content data?
As a cloud infrastructure and service provider, we understand your concerns about data security. We always comply with local laws and regulations on data security. Without your explicit consent, we will never use, or even access, your non-public content data.
How does Huawei Cloud secure my content data?
Huawei Cloud has created a sound, trustworthy, sustainable data security governance system based on the shared responsibility model, in compliance with laws, regulations, and obligations specified in "Your Content" and "Your Security" in Huawei Cloud Customer Agreement, and by referring to international and industry data security standards and best practices. The system includes organization responsibilities, regulatory requirements, process guidance, technical tools, and measurement and verification of security controls. We will take appropriate management, physical, and technical measures to ensure the security of our cloud infrastructure and cloud services and provide systematic and effective security and compliance capabilities for your content data on the cloud.
However, you also need to understand that you have control over your content data on the cloud, and Huawei Cloud is only the trustee for it. Building a cloud data security system depends on the security capabilities provided by the cloud service provider and appropriate security measures you take in the cloud. You shall be responsible for the legitimacy, security, accuracy, integrity, and reliability of your content data, including but not limited to developing and implementing appropriate security regulations (such as user management and access control), deploying appropriate cloud security services, implementing appropriate security configurations, and installing vulnerability patches in a timely manner. You are responsible for obtaining and maintaining any notice, consent, or authorization related to your content. We will not assume any obligations or liabilities related to your content, unless otherwise specified in laws.
You can use cloud security services and features, such as Data Encryption Workshop (DEW) and Database Security Service (DBSS), to help you manage data security. To improve security and compliance, you can count on our security services and solutions, such as the DJCP solution.