The European Commission tasked the European Union Agency for Cybersecurity with adding data sovereignty requirements to the draft Cybersecurity Certification Scheme for Cloud Services, Euractiv reports. The strategy would be near-identical to France’s cybersecurity certification regime, SecNumCloud. Under the draft scheme, maintenance, operations and data processed by cloud service providers would have to be located in the EU. Non-European access would be guaranteed by mandating cloud service providers be headquartered in the EU.
17 June 2022
European Commission requests data sovereignty requirements for cloud services certification scheme
Related stories
Notes from the IAPP Canada: Navigating the gray area of biometrics
Data brokers, beware: Distinguishing PADFAA from the DOJ's DSP
A view from DC: Conflicts over data are battles for power
Behind the camera with 'Privacy People' documentarian and privacy pro Stephen Bolinger
Notes from the Asia-Pacific region: Australia's OAIC takes action over Optus breach
