The responsibility for data privacy was vested on the data owners when concerned with cloud services. They were held accountable for data breach incidents while the data processors were spared. However, GDPR has led to the shift to include the accountability of the data processors. This trend has been reflected in legislation across the globe. PDPC had established a new chapter on "Cloud Services" in the Advisory Guidelines on the PDPA for Selected Topics. In 2020 June, the Chapter 19 of PDPA included Privacy Recognition for Processors (PRP) System. In this presentation learn recommendations on how organisations can adopt and adapt to the ‘new normal’ of cloud computing compliance requirements.