The iKaaS (intelligent Knowledge-as-a-Service) platform integrates the data on multiple local cloudsystems organically and provides the data to various types of applications as knowledge while takingsecurity and privacy fully into account. However, access control on the iKaaS platform is not withoutcomplications because the application may access personal data in different countries from the onewhere the application exists. Hidano et al. thus designed a security gateway that is set at the entranceof each local cloud and controls access to the cross-border applications while interpreting regulationsrelated to personal data for both countries. In order to help the security gateway confirm the validityof the application, they introduced the concept of the privacy certificate authority (CA), which isbuilt for each country as an executive agency responsible for the national regulations governing thehandling of personal data. In this paper, we design a hierarchical model of multiple privacy CAsresponsible for regulations where the effective areas are different. The security gateway can therebycontrol the transfer of data not only to different countries, but also to different unions or cities.