Abstract
This document contains a checklist that can be used to develop or evaluate security and privacy requirements for Cloud computing services. The content has been gathered from established industry standards and best practices, supplemented with requirements from European data protection legislation, and taking into account security issues identified in recent research on Cloud security. The document is intended to be used by potential cloud customers that need to assess the security of a cloud service they are considering, by cloud providers to evaluate the security of their offers, or by anyone else who is in need of supporting material for cloud security and privacy.