| ▲ | epolanski 6 days ago | |||||||
> I've seen zero cases so far where "physically present & managed in the EU but still owned by a US company" is sufficient to mitigate the typical US hosting concerns. I did. Some of my clients by design host everything on German servers of Azure and call it a day. | ||||||||
| ▲ | f_devd 6 days ago | parent | next [-] | |||||||
To be fair Microsoft has put the most effort[0] of any US company I've seen in order to try and work around the issue. Not that I would choose it. [0]: https://www.microsoft.com/en-us/trust-center/privacy/europea... | ||||||||
| ||||||||
| ▲ | ta20240528 6 days ago | parent | prev | next [-] | |||||||
Then your customers are morons, let me explain: 1. the USA has secret FISA courts - defendants cannot even say they whether they were summoned, let alone what case or judgements were 2. the CLOUD Act compels American companies to hand over data, regardless of where its hosted. So your German companies would never even know if they have been compromised. But ignorance can be bliss. | ||||||||
| ▲ | pyrale 6 days ago | parent | prev | next [-] | |||||||
> Some of my clients by design host everything on German servers of Azure and call it a day. Accepting the risk isn't the same as finding a way to mitigate it. Plenty of EU companies just happily use US cloud providers, that doesn't mean the risk doesn't exist. | ||||||||
| ▲ | croes 6 days ago | parent | prev [-] | |||||||
Did you correct them or do you wait until they get a warning letter from some shady law firm for violating GDPR? | ||||||||
| ||||||||