In today's rapidly evolving digital society, cloud computing has become an integral part of many businesses and organizations. While the widespread adoption of cloud services has significantly enhanced operational efficiency, it has also introduced new challenges in data security and privacy protection. To address these challenges, ISO 27017 and ISO 27018 standards were established, offering best practices and guidance for cloud service providers and users in the areas of information security and personal data protection.