End of US cloud providers?

NickK

NickK

NickK

Soldato
Joined
13 Jan 2003
Posts
24,549
noyb.eu

US Cloud soon illegal? Trump punches first hole in EU-US Data Deal

Trump paralysed the "Privacy and Civil Liberties Oversight Board" (PCLOB), a key element of the EU-US data transfer deal that allows EU-US data flows.
noyb.eu noyb.eu

It seems that (with the Trump effect in full engagement) it's likely we're going to see more and more pressure to move away from transfers to US of data.

This could be resolved through ring fencing but there's also alternative cloud providers, however I suspect over the next five years we will see moves away from US legally exposed cloud.

Naturally we know that there's a US monopoly and technology for compute, storage and quantum have specialist companies (including manufacturing) that would be at risk from Russian GRU activities.

Thoughts?
 
We need a big European cloud provider but all companies default to AWS or Azure because they got in there first.
 
A lot of the cloud companies have data centres across the world, most of them will respect the laws of the country that their data centre is located.

The data protection laws in the US differs from the ones in Europe, and differs from country to country.

Depending on the line of business and the regulations of that business. it can matter which data protection laws are protecting the data. For example if you are in medical research, funded by an EU grant, part of the regulation states that the data must be protected inline with the EU data protection acts, therefore the data must sit on a cloud server in the EU.

Some cloud providers can ensure that.. while some cannot.
 
Quartz said:
Isn't there the one which sponsors debauer?
Click to expand...

Debauer?

slinxy said:
A lot of the cloud companies have data centres across the world, most of them will respect the laws of the country that their data centre is located.

The data protection laws in the US differs from the ones in Europe, and differs from country to country.

Depending on the line of business and the regulations of that business. it can matter which data protection laws are protecting the data. For example if you are in medical research, funded by an EU grant, part of the regulation states that the data must be protected inline with the EU data protection acts, therefore the data must sit on a cloud server in the EU.

Some cloud providers can ensure that.. while some cannot.
Click to expand...

For Azure it has written in their Terms and Conditions, Microsoft has the right to access any data on the cloud without permission.

This is why the UK Government refuses to move everything to the cloud.
 
malachi said:
For Azure it has written in their Terms and Conditions, Microsoft has the right to access any data on the cloud without permission.

This is why the UK Government refuses to move everything to the cloud.
Click to expand...

This whilst technically true is not quite as alarming as it’s been made to sound. Any requests for access to your data by law enforcement will be directed to the customer to resolve in the first instance and if it isn’t resolved in that way, and it is a valid legal request to do so, only the data that has been requested will be provided and the customer is also notified of everything that is happening unless there is a legal reason for them not to do so. It’s basically the same as requests for data stored on-premises that are required for legal reasons.

There’ll definitely be more discussions around this in the coming months for sure, but Azure is too big of a cash cow to do anything stupid like mining all your data. They’re not going to commit corporate suicide with their business the way that Trump has done with their economy.
 
malachi said:
Debauer?



For Azure it has written in their Terms and Conditions, Microsoft has the right to access any data on the cloud without permission.

This is why the UK Government refuses to move everything to the cloud.
Click to expand...
You know that Microsoft host most of uk government cloud services. The do use GCP and AWS as well but most is in a private Azure instance.
 
Last edited:
There are plenty of countries that require you to host data within their respective jurisdictions, which is why both Azure and AWS (and others) often have data centers there, and can configure that certain data only resides on servers within specific data centers.

We've had to go through planning for this at work a while back in both China and India - ultimately we didn't need to enact that plan due to local rules on cloud data storage changing.
 
Yup same here - data and processing. India required indian national data to remain property of india if the data processor in Ireland went into receivership and that data protected in escrow. Cost €100,000 for the legal partners to answer that for me (required by Indian regulatory compliance)! Financial data is handled differently due to the anti fraud and laundering agreements.

Key differentiation is the control (ie operating as a separate entity).
 
Last edited:
You must log in or register to reply here.
Back
Top Bottom