Public Cloud Computing (PCC) delivers technology "As a Service". It is widely accepted by consumers, enterprises and, even governments because it reduces financial budget for acquiring Information technology (IT) infrastructure. The major deterrence against its adoption is security and governance risks. These risks are associated with three facets, geographical location of cloud provider, change of governance level within cloud service layers and inadequacy of existing international security standards to maintain security. In this paper, these three domains are researched to formulate governance life cycle framework for managing user data security in PCC