Gartner Blog Network


Gartner’s Global IT Council on Cloud Computing: Do You Have Rights?

by Daryl Plummer  |  July 11, 2010  |  5 Comments

It has long been apparent to me that Cloud Computing represents a significant change in the relationships between providers of solutions based on technology and the consumers who use those solutions. Whether you are talking about how computing solutions are paid for, who delivers them, or what the contracts for those services look like, you have to deal with the trust that must be established between service providers and service consumers. And, one of the key ways of building trust is to agree on who gets what rights, and who takes on what responsibilities.

In the past 8 months, I’ve worked with a number of industry players to try to put into words some of the issues that can erode that necessary trust between providers and consumers in the cloud. That effort is part of Gartner’s Global IT Council where we not only looked at the issues, but actually sought to propose some basic approaches to addressing those issues.

The Gartner Global IT Council for Cloud Computing consists of CIOs and senior IT leaders of large global enterprises who work together to create actionable real-world recommendations and drive fundamental changes in the way the IT industry works. 

The Council’s list of Rights and Responsibilities for Cloud Computing identifies some of the more interesting “basic truths” that should be self-evident but often are not. It seeks to establish a checklist of elements that should be addressed in any contractual agreement between cloud service providers and consumers. Once that checklist is in hand, a proper discussion of how to most effectively evaluate, select, and consume cloud services can be started. This is necessary even for simple cloud services, but is essential for the most mission critical of business processes supported by cloud computing.

The Councils preliminary findings and a detailed overview of their Charters can be found athttp://www.gartner.com/technology/research/reports/global-it-council.jsp. Join the discussion and help the list grow and change over time as the industry evolves the dialog.

Additional Resources

View Free, Relevant Gartner Research

Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.

Read Free Gartner Research

Category: applications  bill-of-rights  bpm  business-process-management  cartoon  cloud  emerging-phenomena  emerging-trends  it-governance  responsibilities  service-orientation  strategic-planning  vendor-contracts  

Tags: bill-of-rights  cloud-computing  cloud-rights  cloud-services  consumers  gartners-global-it-council-on-cloud-computing  global-it-council  providers  responsibilities  rights-and-responsibilities  trust  

Daryl C. Plummer
Managing VP & Gartner Fellow
18 years at Gartner
35 years IT industry

Daryl Plummer is vice president, chief of Research and chief Gartner Fellow. Mr. Plummer manages the Gartner Fellows Program, which is designed to allow senior analysts the opportunity to explore new research ideas and to elevate… Read Full Bio


Thoughts on Gartner’s Global IT Council on Cloud Computing: Do You Have Rights?


  1. […] and a summary of recommendations in each of the seven areas, and a list of those participating • Gartner’s Global IT Council on Cloud Computing: Do You Have Rights? Blog, Darryl Plummer, 11 Jul […]

  2. Daryl,

    Great work by Gartner and the Council on the Rights and Responsibilities for Cloud Computing. It clearly reflects much of my own thinking from the series of posts I did in late 2008, updated again last month in my “Cloud Computing Bill of Rights, 2010 Edition”.

    One key area I would like to see the Council address in a future update of the Gartner work is the following:

    Does the cloud consumer have a *responsibility* to assure the security of their applications and data, either directly (through work that the cloud consumer has control over), or via audits and reviews of contractual security agreements with the provider?

    This is much more than the right to know what the provider does about security. It is an explicit acknowledgement that, while the consumer might contract out some control over their IT security, the consumer themselves is ultimately accountable for the choices they make.

    I think this is a key issue, and a responsibility that I think there is much confusion about in the cloud computing market.

    Thoughts?

    James Urquhart
    @jamesurquhart
    CNET | The Wisdom of Clouds

  3. Esme Vos says:

    Is there a compilation of the rights that a customer has in different jurisdictions (e.g UK, US, France, etc.) when his privacy is compromised, the provider goes into receivership, service is poor, etc.?

  4. Daryl Plummer says:

    Sorry for the delay. No list yet. Mostly, we are looking at global isues, though.

  5. Daryl Plummer says:

    It a good point, James. As consumers get into multi-tenant cloud services, that responsibility gorws, yes? We are looking at more consumer responsibilities now.



Comments are closed

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.