The European Commission tasked the European Union Agency for Cybersecurity with adding data sovereignty requirements to the draft Cybersecurity Certification Scheme for Cloud Services, Euractiv reports. The strategy would be near-identical to France’s cybersecurity certification regime, SecNumCloud. Under the draft scheme, maintenance, operations and data processed by cloud service providers would have to be located in the EU. Non-European access would be guaranteed by mandating cloud service providers be headquartered in the EU.
17 June 2022
European Commission requests data sovereignty requirements for cloud services certification scheme
Related stories
Notes from the IAPP Canada: AI, collaboration, deidentification on privacy pros' minds
A view from DC: Nontariff barriers in the spotlight
A dilemma of distrust: How data governance and privacy can rebuild customer confidences
A view from Brussels: What is and isn't in the EU's AI Continent Action Plan
Notes from the Asia-Pacific region: Regulatory developments in China, Hong Kong
