{"id":6175,"date":"2026-01-11T00:21:38","date_gmt":"2026-01-10T23:21:38","guid":{"rendered":"https:\/\/www.proveritate.hu\/?page_id=6175"},"modified":"2026-01-11T00:21:38","modified_gmt":"2026-01-10T23:21:38","slug":"legal-frameworks-and-market-dynamics-of-cloud-computing-contracts-analyzing-obligations-liabilities-and-regulatory-challenges","status":"publish","type":"page","link":"https:\/\/www.proveritate.hu\/index.php\/legal-frameworks-and-market-dynamics-of-cloud-computing-contracts-analyzing-obligations-liabilities-and-regulatory-challenges\/","title":{"rendered":"Legal Frameworks and Market Dynamics of Cloud Computing Contracts: Analyzing Obligations, Liabilities, and Regulatory Challenges"},"content":{"rendered":"\n<h6 class=\"wp-block-heading has-text-align-center\"><em><strong><strong><strong>KHRAISHA, Wasim<\/strong><\/strong><\/strong><\/em><\/h6>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center\"><em><em>Cloud Computing Contracts, Data Protection (GDPR), Service Level Agreements (SLAs), Liability and Risk Management, NIS2 Directive, Smart Contracts, and AI in Cloud Services<\/em><\/em><\/p>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<div style=\"height:40px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-space-between is-layout-flex wp-container-core-buttons-is-layout-b2891da8 wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link has-text-align-center wp-element-button\" href=\"https:\/\/www.proveritate.hu\/index.php\/ember-es-jog-lapszamok\/\">Aktu\u00e1lis lapsz\u00e1m<\/a><\/div>\n\n\n\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link has-text-align-center wp-element-button\" href=\"https:\/\/www.proveritate.hu\/index.php\/ember-es-jog-lapszamok\/\">Arch\u00edv lapsz\u00e1mok<\/a><\/div>\n\n\n\n<div class=\"wp-block-button is-style-fill\"><a class=\"wp-block-button__link has-text-align-center wp-element-button\" href=\"https:\/\/www.proveritate.hu\/index.php\/kezirat-benyujtas-ember-es-jog\/\" style=\"border-radius:100px\">K\u00e9zirat bek\u00fcld\u00e9s<\/a><\/div>\n\n\n\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link has-text-align-center wp-element-button\" href=\"https:\/\/www.proveritate.hu\/index.php\/szerzoi-utmutato\/\" target=\"_blank\" rel=\"noreferrer noopener\">Szerz\u0151i \u00datmutat\u00f3<\/a><\/div>\n<\/div>\n\n\n\n<div style=\"height:60px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"#szerzo\">Szerz\u0151 \/ Author<\/a><\/li>\n\n\n\n<li><a href=\"#cite\">Id\u00e9z\u00e9s \/ How to cite<\/a><\/li>\n\n\n\n<li><a href=\"#absztrakt\">Absztrakt \/ <\/a><a href=\"#abstract\">Abstract<\/a><\/li>\n\n\n\n<li><a href=\"#pdf\">Teljes sz\u00f6veg (magyar) \/ Full text (Hungarian)<\/a><\/li>\n\n\n\n<li><a href=\"#hivatk\">Hivatkoz\u00e1sok \/ References<\/a><\/li>\n\n\n\n<li><a href=\"#copyright\">Copyright<\/a><\/li>\n<\/ul>\n\n\n\n<div style=\"height:40px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\">Megjelen\u00e9s \/ Publication<\/h6>\n\n\n\n<figure class=\"wp-block-table is-style-stripes\"><table class=\"has-fixed-layout\"><thead><tr><th class=\"has-text-align-center\" data-align=\"center\"><strong>Beny\u00fajtva<\/strong> \/ Submitted<\/th><th class=\"has-text-align-center\" data-align=\"center\"><strong>Elfogadva<\/strong> \/ Accepted<\/th><th class=\"has-text-align-center\" data-align=\"center\"><strong>Publik\u00e1lva<\/strong> \/ Publicated<\/th><th class=\"has-text-align-center\" data-align=\"center\">Lapsz\u00e1m \/ Issue<\/th><\/tr><\/thead><tbody><tr><td class=\"has-text-align-center\" data-align=\"center\">2025. \u00e1prilis 15.<\/td><td class=\"has-text-align-center\" data-align=\"center\">2025. j\u00fanius 1.<\/td><td class=\"has-text-align-center\" data-align=\"center\">2025. j\u00falius 31.<\/td><td class=\"has-text-align-center\" data-align=\"center\">Ember \u00e9s Jog, 2025\/1-2.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"szerzo\">Szerz\u0151 \/ Author<\/h6>\n\n\n\n<p>Wasim Khraisha<\/p>\n\n\n\n<p>PhD Student<\/p>\n\n\n\n<p>Karoli Gaspar University of The Reformed Church, Budapest<\/p>\n\n\n\n<div style=\"height:5px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"cite\">Id\u00e9z\u00e9s \/ How to cite<\/h6>\n\n\n\n<p>KHRAISHA, Wasim: Legal Frameworks and Market Dynamics of Cloud Computing Contracts: Analyzing Obligations, Liabilities, and Regulatory Challenges. <em>Ember \u00e9s Jog<\/em>, 2025\/1-2. 79\u2013101.<\/p>\n\n\n\n<div style=\"height:5px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"abstract\">Abstract<\/h6>\n\n\n\n<p>This article explores the evolving legal and contractual landscape of cloud computing, focusing on the complexities of cloud service agreements and the legal responsibilities of various stakeholders. It provides a comprehensive analysis of cloud contracts, including Service Level Agreements (SLAs) and Data Processing Agreements (DPAs), and their role in allocating liability, managing risks, and ensuring compliance with key regulations such as the General Data Protection Regulation (GDPR) and the NIS2 Directive. The paper examines the implications of different deployment (public, private, hybrid, community) and service models (SaaS, PaaS, IaaS) on the content and enforceability of cloud contracts. It also considers emerging challenges posed by AI-generated and smart contracts and addresses dispute resolution, enforcement, and regulatory intervention, particularly within the European Union. Ultimately, it highlights the need for adaptable legal frameworks and robust contractual practices to ensure legal certainty, fairness, and data protection in a rapidly changing technological environment.<\/p>\n\n\n\n<div style=\"height:5px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"pdf\">Teljes sz\u00f6veg \/ Full text<\/h6>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/www.proveritate.hu\/wp-content\/uploads\/2026\/01\/Khraisha-W-Legal-Framew.pdf\">PDF (English)<\/a><\/div>\n<\/div>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"hivatk\">Hivatkoz\u00e1sok \/ References<\/h6>\n\n\n\n<p>Balboni, Paolo \u2013 Fontana, Francesca: Cloud Computing: A Guide to Evaluate and Negotiate Cloud Service Agreements in the Light of the Actual European Legal Framework. <em>ICT Law Review<\/em>, 2013\/1.<\/p>\n\n\n\n<p>Bradshaw, Simon \u2013 Millard, Christopher \u2013 Walden, Ian: Contracts for Clouds: Comparison and Analysis of the Terms and Conditions of Cloud Computing Services. <em>Queen Mary School of Law Legal Studies Research Paper,<\/em> No. 63\/2010.<\/p>\n\n\n\n<p>Bradshaw, Simon \u2013 Millard, Christopher \u2013 Walden, Ian: <em>Standard Contracts for Cloud Services<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Chang, Henry: <em>Data Protection Regulation and Cloud Computing<\/em>. In Cheung, Anne S Y \u2013 Weber, Rolf H (eds.): Privacy and Legal Issues in Cloud Computing. Cheltenham \u2013 Northampton, Edward Elgar Publishing, 2015.<\/p>\n\n\n\n<p>Dash, S. B. et al.: Service Level Agreement Assurance in Cloud Computing: A Trust Issue. <em>International Journal of Computer Science and Information Technologies,<\/em> 2014\/3.<\/p>\n\n\n\n<p>Eustice, John C.: Understanding Cloud Data Protection and Data Privacy. <em>Thomson Reuters<\/em>, 2024. <a href=\"https:\/\/legal.thomsonreuters.com\/en\/insights\/articles\/understanding-data-privacy-and-cloud-computing\">https:\/\/legal.thomsonreuters.com\/en\/insights\/articles\/understanding-data-privacy-and-cloud-computing<\/a><\/p>\n\n\n\n<p>Geyer, Andrew \u2013 McLellan, Melinda: Strategies for Evaluating Cloud Computing Agreements. <em>Bloomberg Law Reports \u2013 Technology Law<\/em>, 2011\/13.<\/p>\n\n\n\n<p>Gryffroy, Pieter: Legal Aspects of Multi-Cloud: More Clouds, More Problems? <em>C.T.L.R.<\/em>, 2018\/5.<\/p>\n\n\n\n<p>Hon, W. Kuan et. al.: <em>Negotiated Contracts for Cloud Services<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 2<sup>nd<\/sup> edition. New York, Oxford University Press, 2021.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 H\u00f6rnle, Julia \u2013 Millard, Christopher: <em>Which Law(s) Apply to Personal Data in Clouds?<\/em> In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 Millard, Christopher: <em>How Do Restrictions on International Data Transfers Work in Clouds?<\/em> In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: Negotiating Cloud Contracts &#8211; Looking at Clouds from Both Sides Now. <em>Queen Mary School of Law Legal Studies Research Paper<\/em>, No. 117\/2012.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: UK G-Cloud v1 and the Impact on Cloud Contracts. <em>Queen Mary School of Law Legal and Studies Research Paper,<\/em> No. 115\/2012.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: <em>Negotiated Contracts for Cloud Services<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: <em>Public Sector Cloud Contracts<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Hoofnagle, Chris Jay: <em>Consumer Protection in Cloud Computing Services: Recommendations for Best Practices from a Consumer Federation of America Retreat on Cloud Computing<\/em>. Consumer Federation of America, 2010. <a href=\"https:\/\/consumerfed.org\/pdfs\/Cloud-report-2010.pdf\">https:\/\/consumerfed.org\/pdfs\/Cloud-report-2010.pdf<\/a><\/p>\n\n\n\n<p>Jaiswal, Manishaben: Cloud Computing and Infrastructure. <em>International Journal of Research and Analytical Reviews<\/em>, 2017\/2.<\/p>\n\n\n\n<p>Jansen, Wayne \u2013 Grance, Timothy: <em>Guidelines on Security and Privacy in Public Cloud Computing<\/em>.<\/p>\n\n\n\n<p>Kemp, Richard: <em>Legal Aspects of Cloud Computing: Cloud Contracting. White Paper v1.0.<\/em> Kemp IT Law LLP, 2019.<\/p>\n\n\n\n<p>Khandelwal, Manish \u2013 Saini, Hukum: <em>Review on Security Challenges of Cloud Computing<\/em>. International Conference on Advancements in Computing &amp; Management (ICACM-2019). <a href=\"https:\/\/ssrn.com\/abstract=3463271\">https:\/\/ssrn.com\/abstract=3463271<\/a><\/p>\n\n\n\n<p>Kratochwill, Gy\u00f6rgy: What is the Difference between a Software License Agreement and a &#8216;Software as a Service&#8217; (SaaS) Agreement?<em>les Nouvelles<\/em>, 2021\/3.<\/p>\n\n\n\n<p>Kuner, Christopher: Data Protection Law and International Jurisdiction on the Internet (Part 1). International Journal of Law and Information Technology, 2010\/2.<\/p>\n\n\n\n<p>Lando, Ole \u2013 Beale, Hugh:&nbsp; <em>Principles of European Contract Law, Parts I and II<\/em>. The Hague, Kluwer Law International, 2000.<\/p>\n\n\n\n<p>Levi, Stuart D. \u2013 Lipton, Alex B.: An Introduction to Smart Contracts and Their Potential and Inherent Limitations. <em>Harvard Law School Forum on Corporate Governance<\/em>, May 26. 2018.<\/p>\n\n\n\n<p>Loos, Marco \u2013 Luzak, Joasia: <em>Update the Unfair Contract Terms Directive for Digital Services European Parliament<\/em>. 2021. <a href=\"https:\/\/www.europarl.europa.eu\/RegData\/etudes\/STUD\/2021\/676006\/IPOL_STU%282021%29676006_EN.pdf?\">https:\/\/www.europarl.europa.eu\/RegData\/etudes\/STUD\/2021\/676006\/IPOL_STU%282021%29676006_EN.pdf?<\/a><\/p>\n\n\n\n<p>Martic, Dusko: Online Dispute Resolution for Cloud Computing Services. <em>CEUR Workshop Proceedings<\/em>, 2013. 1105.<\/p>\n\n\n\n<p>Meenu: The Impact of Artificial Intelligence on Contract Law: Challenges and Opportunities. <em>Indian Journal of Law<\/em>, 2024\/2.<\/p>\n\n\n\n<p>Mell, Peter \u2013 Grance, Timothy: <em>The NIST Definition of Cloud Computing<\/em>. Gaithersburg, National Institute of Standards and Technology, 2011.<\/p>\n\n\n\n<p>Michels, Johan David \u2013 Millard, Christopher: <em>Digital Assets in Clouds<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 2<sup>nd<\/sup> edition. New York, Oxford University Press, 2021.<\/p>\n\n\n\n<p>Michels, Johan David \u2013 Millard, Christopher \u2013 Turton, Felicity: Contracts for Clouds: An Analysis of the Standard Contracts for 40 Cloud Computing Services. <em>Queen Mary Law Research Paper Series<\/em>, No. 334\/2020.<\/p>\n\n\n\n<p>Michels, Johan David \u2013 Millard, Christopher \u2013 Turton, Felicity: <em>Standard Contracts for Cloud Services<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 2<sup>nd<\/sup> edition. New York, Oxford University Press, 2021.<\/p>\n\n\n\n<p>Odumosu, Damilola O.: Cloud Service Agreement: Salient Contractual Clauses and Its Practical Implications. 2018. <a href=\"https:\/\/ssrn.com\/abstract=3276612\">https:\/\/ssrn.com\/abstract=3276612<\/a><\/p>\n\n\n\n<p>Oppenheim, Charles: Cloud law and contract negotiation. <em>El profesional de la informaci\u00f3n<\/em>, 2012\/5.<\/p>\n\n\n\n<p>Overby, Stephanie \u2013 Greiner, Lynn\u2013 Paul, Lauren Gibbons: What Is an SLA? Best Practices for Service-Level Agreements. <em>CIO<\/em>, June 21. 2024.<\/p>\n\n\n\n<p>Radu, Bogdan: Key Aspects of Cloud-Computing Services Related Contracts. <em>National Strategies Observer,<\/em> 2016\/1.<\/p>\n\n\n\n<p>Reed, Chris: <em>Cloud Governance: The Way Forward.<\/em> In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Reed, Chris: <em>Information Ownership in the Cloud<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 2<sup>nd<\/sup> edition. New York, Oxford University Press, 2021.<\/p>\n\n\n\n<p>Reed, Chris \u2013 Cunningham, Alan: <em>Ownership of Information in Clouds<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 1<sup>st<\/sup> edition. New York, Oxford University Press, 2013.<\/p>\n\n\n\n<p>Reynaud, Laura: Read Before Signing: 15 Terms in Cloud Service Agreements. <em>ACC Docket<\/em>, September 29. 2021.<\/p>\n\n\n\n<p>Rittinghouse, John W. \u2013 Ransome, James F.: <em>Cloud Computing: Implementation, Management, and Security<\/em>. Boca Raton, CRC Press, 2010.<\/p>\n\n\n\n<p>Rustad, Michael L. \u2013 Kavusturan, Elif: A Commercial Law for Software Contracting. <em>Washington and Lee Law Review<\/em>, 2019\/2.<\/p>\n\n\n\n<p>Sandstr\u00f6m, Isabel: <em>The Impact of the NIS2 Directive on Subcontractors in the Transportation Sector<\/em>. Master\u2019s thesis. Lule\u00e5, Lule\u00e5 University of Technology, 2024.<\/p>\n\n\n\n<p>Schwartz, Alan \u2013 Scott, Robert E.: Third-Party Beneficiaries and Contractual Networks. <em>Journal of Legal Analysis<\/em>, 2015\/2.<\/p>\n\n\n\n<p>Scruggs, Ron \u2013 Trappler, Thomas \u2013 Philpott, Don: <em>A 6-Step \u201cHow-To\u201d Guide to Contracting for Cloud Services Includes a 137-Element Contracting Checklist<\/em>. Longboat Key, Government Training Inc., 2011.<\/p>\n\n\n\n<p>Svantesson, Dan Jerker B.: A New Jurisprudential Framework for Jurisdiction: Beyond the Harvard Draft. <em>AJIL Unbound<\/em>, Volume 109\/2015.<\/p>\n\n\n\n<p>Teramura, Nobumichi \u2013 Trakman, Leon: Confidentiality and Privacy of Arbitration in the Digital Era: Pies in the Sky? <em>Arbitration International<\/em>, 2024\/3.<\/p>\n\n\n\n<p>Vandezande, Niels: <em>Cybersecurity in the EU: How the Nis2-Directive Stacks Up Against its Predecessor<\/em>. 2023. <a href=\"https:\/\/ssrn.com\/abstract=4383118\">https:\/\/ssrn.com\/abstract=4383118<\/a><\/p>\n\n\n\n<p>Wuermeling, Ulrich \u2013 Oldani, Isabella: <em>Regulation of International Data Transfers in Clouds<\/em>. In Millard, Christopher (ed.): Cloud Computing Law. 2<sup>nd<\/sup> edition. New York, Oxford University Press, 2021.<\/p>\n\n\n\n<p>Council Directive 93\/13\/EEC of 5 April 1993 on unfair terms in consumer contracts<\/p>\n\n\n\n<p><em>Cloud Computing. Benefits, Risks and Recommendations for Information Security<\/em>. European Network and Information Security Agency, 2009. <a href=\"https:\/\/www.enisa.europa.eu\/publications\/cloud-computing-risk-assessment\">https:\/\/www.enisa.europa.eu\/publications\/cloud-computing-risk-assessment<\/a><\/p>\n\n\n\n<p><em>Study on the Economic Detriment to Small and Medium-Sized Enterprises Arising from Unfair and Unbalanced Cloud Computing Contracts. Final report.<\/em> Brussels, European Commission, 2018.<\/p>\n\n\n\n<p><em>The Impact of Mandatory Arbitration Clauses in Commercial Agreements<\/em>. 2025. <a href=\"https:\/\/www.possingerlaw.com\/the-impact-of-mandatory-arbitration-clauses-in-commercial-agreements\/\">https:\/\/www.possingerlaw.com\/the-impact-of-mandatory-arbitration-clauses-in-commercial-agreements\/<\/a><\/p>\n\n\n\n<p>Directive 1999\/44\/EC of the European Parliament and of the Council and repealing Council Directive 85\/577\/EEC and Directive 97\/7\/EC of the European Parliament and of the Council<\/p>\n\n\n\n<p>Directive 2011\/83\/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93\/13\/EEC<\/p>\n\n\n\n<p>Directive (EU) 2022\/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, and repealing Directive (EU) 2016\/1148 (NIS2 Directive)<\/p>\n\n\n\n<p><em>EUCS \u2013 Cloud Services Scheme<\/em>. European Network and Information Security Agency, 2020. <a href=\"https:\/\/www.enisa.europa.eu\/sites\/default\/files\/publications\/EUCS%20%E2%80%93%20Cloud%20Service%20candidate%20cybersecurity%20certification%20scheme.pdf\">https:\/\/www.enisa.europa.eu\/sites\/default\/files\/publications\/EUCS%20%E2%80%93%20Cloud%20Service%20candidate%20cybersecurity%20certification%20scheme.pdf<\/a><\/p>\n\n\n\n<p><em>Navigating Regulatory Challenges in Cloud Services Agreements<\/em>. 2024. <a href=\"https:\/\/www.sifma.org\/wp-content\/uploads\/2024\/03\/SIFMA-BLG-White-Paper-Cloud-Services-Agreement-2024.pdf\">https:\/\/www.sifma.org\/wp-content\/uploads\/2024\/03\/SIFMA-BLG-White-Paper-Cloud-Services-Agreement-2024.pdf<\/a><\/p>\n\n\n\n<p><em>NIS2 Directive: New Rules on Cybersecurity of Network and Information Systems<\/em>. Brussels, European Commission, 2025.<\/p>\n\n\n\n<p><em>Notes on the Main Issues of Cloud Computing Contracts (prepared by the UNCITRAL secretariat, 2019)<\/em>. United Nations Commission on International Trade Law. <a href=\"https:\/\/uncitral.un.org\/en\/cloud\/liability\">https:\/\/uncitral.un.org\/en\/cloud\/liability<\/a><\/p>\n\n\n\n<p><em>Notes on the Main Issues of Cloud Computing Contracts (prepared by the UNCITRAL secretariat, 2019)<\/em>. United Nations Commission on International Trade Law. <a href=\"https:\/\/uncitral.un.org\/en\/content\/main-pre-contractual-aspects\">https:\/\/uncitral.un.org\/en\/content\/main-pre-contractual-aspects<\/a><\/p>\n\n\n\n<p>Regulation (EU) No 526\/2013 on information and communications technology cybersecurity certification and repealing (Cybersecurity Act)<\/p>\n\n\n\n<p>Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation)<\/p>\n\n\n\n<p>Regulation (EU) 2019\/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity)<\/p>\n\n\n\n<p>Regulation (EU) 2022\/1925 of the European Parliament and of the Council of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019\/1937 and (EU) 2020\/1828 (Digital Markets Act)<\/p>\n\n\n\n<p>Regulation (EU) 2023\/2854 of the European Parliament and of the Council of 13 December 2023 on harmonized rules on fair access to and use of data (Data Act)<\/p>\n\n\n\n<p><em>Questions and Answers: Digital Markets Act: Ensuring fair and open digital markets<\/em>. Brussels, European Commission, 2023.<\/p>\n\n\n\n<p><em>What Is a Cloud Service Provider?<\/em> <a href=\"https:\/\/cloud.google.com\/learn\/what-is-a-cloud-service-provider\">https:\/\/cloud.google.com\/learn\/what-is-a-cloud-service-provider<\/a><\/p>\n\n\n\n<div style=\"height:5px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h6 class=\"wp-block-heading\" id=\"copyright\">Copyright<\/h6>\n\n\n\n<p>(C) Pro Veritate K\u00f6zhaszn\u00fa Egyes\u00fclet<\/p>\n\n\n\n<p>(C) Szerz\u0151 \/ Author<\/p>\n\n\n\n<p>Az Ember \u00e9s Jog ny\u00edlt hozz\u00e1f\u00e9r\u00e9s\u0171 (Open Access) foly\u00f3irat, az abban megtal\u00e1lhat\u00f3 cikkek <a href=\"https:\/\/www.proveritate.hu\/index.php\/ember-es-jog-publikacios-es-etikai-szabalyzat\/#openaccess\">szabadon hozz\u00e1f\u00e9rhet\u0151k<\/a> az Olvas\u00f3k sz\u00e1m\u00e1ra.<\/p>\n\n\n\n<p>A foly\u00f3irat \u00e9s a cikkek a&nbsp;<a href=\"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/deed.hu\">Creative Commons CC BY-NC-ND 4.0<\/a>&nbsp;licenc alatt \u00e1llnak.<\/p>\n\n\n\n<p xmlns:cc=\"http:\/\/creativecommons.org\/ns#\"><a href=\"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/deed.hu\" target=\"_blank\" rel=\"license noopener noreferrer\" style=\"display:inline-block;\"><img decoding=\"async\" style=\"height:22px!important;margin-left:3px;vertical-align:text-bottom;\" src=\"https:\/\/mirrors.creativecommons.org\/presskit\/icons\/cc.svg?ref=chooser-v1\" alt=\"\"><img decoding=\"async\" style=\"height:22px!important;margin-left:3px;vertical-align:text-bottom;\" src=\"https:\/\/mirrors.creativecommons.org\/presskit\/icons\/by.svg?ref=chooser-v1\" alt=\"\"><img decoding=\"async\" style=\"height:22px!important;margin-left:3px;vertical-align:text-bottom;\" src=\"https:\/\/mirrors.creativecommons.org\/presskit\/icons\/nc.svg?ref=chooser-v1\" alt=\"\"><img decoding=\"async\" style=\"height:22px!important;margin-left:3px;vertical-align:text-bottom;\" src=\"https:\/\/mirrors.creativecommons.org\/presskit\/icons\/nd.svg?ref=chooser-v1\" alt=\"\"><\/a><\/p>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<a href=\"https:\/\/info.flagcounter.com\/xq0N\"><img decoding=\"async\" src=\"https:\/\/s01.flagcounter.com\/count2\/xq0N\/bg_FFFFFF\/txt_000000\/border_CCCCCC\/columns_8\/maxflags_150\/viewers_0\/labels_1\/pageviews_1\/flags_0\/percent_0\/\" alt=\"Free counters!\" border=\"0\"><\/a>\n\n\n\n<div style=\"height:40px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n","protected":false},"excerpt":{"rendered":"<p>KHRAISHA, Wasim Cloud Computing Contracts, Data Protection (GDPR), Service Level Agreements (SLAs), Liability and Risk Management, NIS2 Directive, Smart Contracts, and AI in Cloud Services Megjelen\u00e9s \/ Publication Beny\u00fajtva \/ Submitted Elfogadva \/ Accepted Publik\u00e1lva \/ Publicated Lapsz\u00e1m \/ Issue 2025. \u00e1prilis 15. 2025. j\u00fanius 1. 2025. j\u00falius 31. Ember \u00e9s Jog, 2025\/1-2. Szerz\u0151 \/ Author Wasim Khraisha PhD Student Karoli Gaspar University of The Reformed Church, Budapest Id\u00e9z\u00e9s \/ How to cite KHRAISHA, Wasim: Legal Frameworks and Market Dynamics of Cloud Computing Contracts: Analyzing Obligations, Liabilities, and Regulatory Challenges. Ember \u00e9s Jog, 2025\/1-2. 79\u2013101. Abstract This article explores the evolving legal and contractual landscape of cloud computing, focusing on the complexities of cloud service agreements and the legal responsibilities of various stakeholders. It provides a comprehensive analysis of cloud contracts, including Service Level Agreements (SLAs) and Data Processing Agreements (DPAs), and their role in allocating liability, managing risks, and ensuring compliance with key regulations such as the General Data Protection Regulation (GDPR) and the NIS2 Directive. The paper examines the implications of different deployment (public, private, hybrid, community) and service models (SaaS, PaaS, IaaS) on the content and enforceability of cloud contracts. It also considers emerging challenges posed by AI-generated and smart contracts and addresses dispute resolution, enforcement, and regulatory intervention, particularly within the European Union. Ultimately, it highlights the need for adaptable legal frameworks and robust contractual practices to ensure legal certainty, fairness, and data protection in a rapidly changing technological environment. Teljes sz\u00f6veg \/ Full text Hivatkoz\u00e1sok \/ References Balboni, Paolo \u2013 Fontana, Francesca: Cloud Computing: A Guide to Evaluate and Negotiate Cloud Service Agreements in the Light of the Actual European Legal Framework. ICT Law Review, 2013\/1. Bradshaw, Simon \u2013 Millard, Christopher \u2013 Walden, Ian: Contracts for Clouds: Comparison and Analysis of the Terms and Conditions of Cloud Computing Services. Queen Mary School of Law Legal Studies Research Paper, No. 63\/2010. Bradshaw, Simon \u2013 Millard, Christopher \u2013 Walden, Ian: Standard Contracts for Cloud Services. In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Chang, Henry: Data Protection Regulation and Cloud Computing. In Cheung, Anne S Y \u2013 Weber, Rolf H (eds.): Privacy and Legal Issues in Cloud Computing. Cheltenham \u2013 Northampton, Edward Elgar Publishing, 2015. Dash, S. B. et al.: Service Level Agreement Assurance in Cloud Computing: A Trust Issue. International Journal of Computer Science and Information Technologies, 2014\/3. Eustice, John C.: Understanding Cloud Data Protection and Data Privacy. Thomson Reuters, 2024. https:\/\/legal.thomsonreuters.com\/en\/insights\/articles\/understanding-data-privacy-and-cloud-computing Geyer, Andrew \u2013 McLellan, Melinda: Strategies for Evaluating Cloud Computing Agreements. Bloomberg Law Reports \u2013 Technology Law, 2011\/13. Gryffroy, Pieter: Legal Aspects of Multi-Cloud: More Clouds, More Problems? C.T.L.R., 2018\/5. Hon, W. Kuan et. al.: Negotiated Contracts for Cloud Services. In Millard, Christopher (ed.): Cloud Computing Law. 2nd edition. New York, Oxford University Press, 2021. Hon, W. Kuan \u2013 H\u00f6rnle, Julia \u2013 Millard, Christopher: Which Law(s) Apply to Personal Data in Clouds? In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Hon, W. Kuan \u2013 Millard, Christopher: How Do Restrictions on International Data Transfers Work in Clouds? In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: Negotiating Cloud Contracts &#8211; Looking at Clouds from Both Sides Now. Queen Mary School of Law Legal Studies Research Paper, No. 117\/2012. Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: UK G-Cloud v1 and the Impact on Cloud Contracts. Queen Mary School of Law Legal and Studies Research Paper, No. 115\/2012. Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: Negotiated Contracts for Cloud Services. In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Hon, W. Kuan \u2013 Millard, Christopher \u2013 Walden, Ian: Public Sector Cloud Contracts. In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Hoofnagle, Chris Jay: Consumer Protection in Cloud Computing Services: Recommendations for Best Practices from a Consumer Federation of America Retreat on Cloud Computing. Consumer Federation of America, 2010. https:\/\/consumerfed.org\/pdfs\/Cloud-report-2010.pdf Jaiswal, Manishaben: Cloud Computing and Infrastructure. International Journal of Research and Analytical Reviews, 2017\/2. Jansen, Wayne \u2013 Grance, Timothy: Guidelines on Security and Privacy in Public Cloud Computing. Kemp, Richard: Legal Aspects of Cloud Computing: Cloud Contracting. White Paper v1.0. Kemp IT Law LLP, 2019. Khandelwal, Manish \u2013 Saini, Hukum: Review on Security Challenges of Cloud Computing. International Conference on Advancements in Computing &amp; Management (ICACM-2019). https:\/\/ssrn.com\/abstract=3463271 Kratochwill, Gy\u00f6rgy: What is the Difference between a Software License Agreement and a &#8216;Software as a Service&#8217; (SaaS) Agreement?les Nouvelles, 2021\/3. Kuner, Christopher: Data Protection Law and International Jurisdiction on the Internet (Part 1). International Journal of Law and Information Technology, 2010\/2. Lando, Ole \u2013 Beale, Hugh:&nbsp; Principles of European Contract Law, Parts I and II. The Hague, Kluwer Law International, 2000. Levi, Stuart D. \u2013 Lipton, Alex B.: An Introduction to Smart Contracts and Their Potential and Inherent Limitations. Harvard Law School Forum on Corporate Governance, May 26. 2018. Loos, Marco \u2013 Luzak, Joasia: Update the Unfair Contract Terms Directive for Digital Services European Parliament. 2021. https:\/\/www.europarl.europa.eu\/RegData\/etudes\/STUD\/2021\/676006\/IPOL_STU%282021%29676006_EN.pdf? Martic, Dusko: Online Dispute Resolution for Cloud Computing Services. CEUR Workshop Proceedings, 2013. 1105. Meenu: The Impact of Artificial Intelligence on Contract Law: Challenges and Opportunities. Indian Journal of Law, 2024\/2. Mell, Peter \u2013 Grance, Timothy: The NIST Definition of Cloud Computing. Gaithersburg, National Institute of Standards and Technology, 2011. Michels, Johan David \u2013 Millard, Christopher: Digital Assets in Clouds. In Millard, Christopher (ed.): Cloud Computing Law. 2nd edition. New York, Oxford University Press, 2021. Michels, Johan David \u2013 Millard, Christopher \u2013 Turton, Felicity: Contracts for Clouds: An Analysis of the Standard Contracts for 40 Cloud Computing Services. Queen Mary Law Research Paper Series, No. 334\/2020. Michels, Johan David \u2013 Millard, Christopher \u2013 Turton, Felicity: Standard Contracts for Cloud Services. In Millard, Christopher (ed.): Cloud Computing Law. 2nd edition. New York, Oxford University Press, 2021. Odumosu, Damilola O.: Cloud Service Agreement: Salient Contractual Clauses and Its Practical Implications. 2018. https:\/\/ssrn.com\/abstract=3276612 Oppenheim, Charles: Cloud law and contract negotiation. El profesional de la informaci\u00f3n, 2012\/5. Overby, Stephanie \u2013 Greiner, Lynn\u2013 Paul, Lauren Gibbons: What Is an SLA? Best Practices for Service-Level Agreements. CIO, June 21. 2024. Radu, Bogdan: Key Aspects of Cloud-Computing Services Related Contracts. National Strategies Observer, 2016\/1. Reed, Chris: Cloud Governance: The Way Forward. In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Reed, Chris: Information Ownership in the Cloud. In Millard, Christopher (ed.): Cloud Computing Law. 2nd edition. New York, Oxford University Press, 2021. Reed, Chris \u2013 Cunningham, Alan: Ownership of Information in Clouds. In Millard, Christopher (ed.): Cloud Computing Law. 1st edition. New York, Oxford University Press, 2013. Reynaud, Laura: Read Before Signing: 15 Terms in Cloud Service Agreements. ACC Docket, September 29. 2021. Rittinghouse, John W. \u2013 Ransome, James F.: Cloud Computing: Implementation, Management, and Security. Boca Raton, CRC Press, 2010. Rustad, Michael L. \u2013 Kavusturan, Elif: A Commercial Law for Software Contracting. Washington and Lee Law Review, 2019\/2. Sandstr\u00f6m, Isabel: The Impact of the NIS2 Directive on Subcontractors in the Transportation Sector. Master\u2019s thesis. Lule\u00e5, Lule\u00e5 University of Technology, 2024. Schwartz, Alan \u2013 Scott, Robert E.: Third-Party Beneficiaries and Contractual Networks. Journal of Legal Analysis, 2015\/2. Scruggs, Ron \u2013 Trappler, Thomas \u2013 Philpott, Don: A 6-Step \u201cHow-To\u201d Guide to Contracting for Cloud Services Includes a 137-Element Contracting Checklist. Longboat Key, Government Training Inc., 2011. Svantesson, Dan Jerker B.: A New Jurisprudential Framework for Jurisdiction: Beyond the Harvard Draft. AJIL Unbound, Volume 109\/2015. Teramura, Nobumichi \u2013 Trakman, Leon: Confidentiality and Privacy of Arbitration in the Digital Era: Pies in the Sky? Arbitration International, 2024\/3. Vandezande, Niels: Cybersecurity in the EU: How the Nis2-Directive Stacks Up Against its Predecessor. 2023. https:\/\/ssrn.com\/abstract=4383118 Wuermeling, Ulrich \u2013 Oldani, Isabella: Regulation of International Data Transfers in Clouds. In Millard, Christopher (ed.): Cloud Computing Law. 2nd edition. New York, Oxford University Press, 2021. Council Directive 93\/13\/EEC of 5 April 1993 on unfair terms in consumer contracts Cloud Computing. Benefits, Risks and Recommendations for Information Security. European Network and Information Security Agency, 2009. https:\/\/www.enisa.europa.eu\/publications\/cloud-computing-risk-assessment Study on the Economic Detriment to Small and Medium-Sized Enterprises Arising from Unfair and Unbalanced Cloud Computing Contracts. Final report. Brussels, European Commission, 2018. The Impact of Mandatory Arbitration Clauses in Commercial Agreements. 2025. https:\/\/www.possingerlaw.com\/the-impact-of-mandatory-arbitration-clauses-in-commercial-agreements\/ Directive 1999\/44\/EC of the European Parliament and of the Council and repealing Council Directive 85\/577\/EEC and Directive 97\/7\/EC of the European Parliament and of the Council Directive 2011\/83\/EU of the European Parliament and of the Council of 25 October 2011 on consumer rights, amending Council Directive 93\/13\/EEC Directive (EU) 2022\/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, and repealing Directive (EU) 2016\/1148 (NIS2 Directive) EUCS \u2013 Cloud Services Scheme. European Network and Information Security Agency, 2020. https:\/\/www.enisa.europa.eu\/sites\/default\/files\/publications\/EUCS%20%E2%80%93%20Cloud%20Service%20candidate%20cybersecurity%20certification%20scheme.pdf Navigating Regulatory Challenges in Cloud Services Agreements. 2024. https:\/\/www.sifma.org\/wp-content\/uploads\/2024\/03\/SIFMA-BLG-White-Paper-Cloud-Services-Agreement-2024.pdf NIS2 Directive: New Rules on Cybersecurity of Network and Information Systems. Brussels, European Commission, 2025. Notes on the Main Issues of Cloud Computing Contracts (prepared by the UNCITRAL secretariat, 2019). United Nations Commission on International Trade Law. https:\/\/uncitral.un.org\/en\/cloud\/liability Notes on the Main Issues of Cloud Computing Contracts (prepared by the UNCITRAL secretariat, 2019). United Nations Commission on International Trade Law. https:\/\/uncitral.un.org\/en\/content\/main-pre-contractual-aspects Regulation (EU) No 526\/2013 on information and communications technology cybersecurity certification and repealing (Cybersecurity Act) Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation) Regulation (EU) 2019\/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) Regulation (EU) 2022\/1925 of the European Parliament and of the Council of 14 September 2022 on contestable and fair markets in the digital sector and amending Directives (EU) 2019\/1937 and (EU) 2020\/1828 (Digital Markets Act) Regulation (EU) 2023\/2854 of the European Parliament and of the Council of 13 December 2023 on harmonized rules on fair access to and use of data (Data Act) Questions and Answers: Digital Markets Act: Ensuring fair and open digital markets. Brussels, European Commission, 2023. What Is a Cloud Service Provider? https:\/\/cloud.google.com\/learn\/what-is-a-cloud-service-provider Copyright (C) Pro Veritate K\u00f6zhaszn\u00fa Egyes\u00fclet (C) Szerz\u0151 \/ Author Az Ember \u00e9s Jog ny\u00edlt hozz\u00e1f\u00e9r\u00e9s\u0171 (Open Access) foly\u00f3irat, az abban megtal\u00e1lhat\u00f3 cikkek szabadon hozz\u00e1f\u00e9rhet\u0151k az Olvas\u00f3k sz\u00e1m\u00e1ra. A foly\u00f3irat \u00e9s a cikkek a&nbsp;Creative Commons CC BY-NC-ND 4.0&nbsp;licenc alatt \u00e1llnak.<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-6175","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/pages\/6175","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/comments?post=6175"}],"version-history":[{"count":1,"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/pages\/6175\/revisions"}],"predecessor-version":[{"id":6176,"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/pages\/6175\/revisions\/6176"}],"wp:attachment":[{"href":"https:\/\/www.proveritate.hu\/index.php\/wp-json\/wp\/v2\/media?parent=6175"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}