Background: The use of cloud computing services raises policy and regulatory challenges globally, more specifically on data security and privacy, amongst other issues. There is a concern on whether South African information and communications technology (ICT) policies and regulatory frameworks are sufficient to address emerging cloud computing regulatory challenges. Therefore, this necessitates a review to determine the extent to which existing regulatory frameworks are applicable to cloud computing and the challenges thereof.

Objectives: The study determines the impact of cloud computing on existing South African ICT policies and regulatory frameworks and ascertains whether they are sufficient to address challenges regarding the use of cloud computing services.

Method: The study followed an interpretivism philosophical stance. A multi-method qualitative research approach was employed and a thematic analysis was applied in which the data was collected through interviews, questionnaires and document analysis.

Results: The existing policies and regulatory frameworks as applicable to computing are playing ‘catch-up’ where technology has a footprint. Moreover, some existing policies use a blanket approach and are not specific to the subject matter. As a result, there is a need for policies that are future-proof and specific to the subject matter.

Conclusion: The emergence of cloud computing has exposed the existing ICT policies and regulatory laws as being inadequate to address cloud computing developments, complexities and challenges, especially challenges related to public confidence regarding the use of cloud computing services and cloud competitiveness.

Subscribe to our newsletter

Get specific, domain-collection newsletters detailing the latest CPD courses, scholarly research and call-for-papers in your field.

South African Journal of Information Management    |    ISSN: 2078-1865 (PRINT)    |    ISSN: 1560-683X (ONLINE)