Cloud Services Compliance Pages ISO 27001:2013
A.15 of ISO 27001:2013 covers information security within supplier relationships. Many organisations use a variety of cloud based services which can be difficult to contact.
This list of cloud services and their related compliance pages can be used to manage supplier risk and evaluate their information security controls.
One aspect that your organisation may need to consider is data residency, or where data is stored.
Although you may store data in any location you wish, there may be legal requirements under the Data Protection Act or General Data Protection Regulations; and additionally your clients may mandate the their data is stored in a particular territory.
Where this is the case you can use the compliance pages listed here to understand where cloud services store your data.