Mahlasela, Oyena NMthethwa, Sthembile NManari, Unarine JThwala, NtombizodwaMkhwanazi, Dephney TDlamini, Thandokuhle M2025-12-032025-12-032025-11https://doi.org/10.1145/3759023.375909http://hdl.handle.net/10204/14476This study aims to investigate and analyse South African organisations’ unique compliance and regulatory challenges when adopting a multi-cloud strategy. Multi-cloud refers to the use of multiple cloud computing services from different cloud providers. This approach has gained significant traction as organisations seek to improve service resilience, avoid vendor lock-in, enhance performance, and comply with varying regional and industry-specific requirements. However, multi-cloud adoption introduces added complexity, particularly in the regulation and compliance management. Through a systematic review of existing literature with regards to multi-cloud strategies, the study uncovered and examined some key compliance and regulatory challenges that include data privacy and protection, cybersecurity, data sovereignty, and cross-border data transfers. Based on the uncovered challenges, the study as part of its contribution to the body of knowledge proposes several recommendations for organisations to consider as they effectively make attempts to address compliance and regulatory challenges in a multi-cloud environment. These include conducting a comprehensive legal and regulatory compliance review, putting in place data sovereignty measures, adopting appropriate data governance frameworks, adherence to third party vendor management best practices, and fostering a strong compliance-driven culture.FulltextenData PrivacyCybersecurityData sovereigntyCross-borderData transfersConference Presentationn/a