Cloud computing is one of the fast growing technologies that eases everyday activities of natural persons and companies. But using cloud computing services also means that the user loses control over the functioning of the relevant services, including questions regarding data protection. Nowadays, data is easily accessible and at the same time wanted by various actors, which is why adequate data protection measures must be ensured in order to prevent the abuse of data. In this regard, special attention needs to be drawn to personal data, due to its usage for commercial purposes, mainly in targeted (interest-based) advertising.
Master's thesis initially describes the main characteristics of cloud computing and cloud computing contracts and presents the legal framework for data protection in the European Union. Afterwards, the key questions regarding data protection are assessed, with an emphasis on the General Data Protection Regulation framework. General Data Protection Regulation brings certain novelties to the protection of natural persons with regard to the processing of personal data, which results in more extensive and comprehensive protection of natural persons. Lastly, the master's thesis examines some questions that at the moment remain open, but will be answered over time by using the implemented solutions in practice.