On 30 Jan 04:57, scarp wrote: > That might be a nice law for the EU, but for data placed on US servers > does it apply? I remember reading a while back about conflict between > the Patriot Act and EU data privacy laws. > > http://www.computing.co.uk/ctg/news/2162386/europe-s-protection-laws-cause-conflict-warn-legal-experts
It doesn't even apply to data hosted in Europe. As soon as the company is a US subsidiary, they are forced to go against EU data regulations: http://www.zdnet.com/blog/igeneration/microsoft-admits-patriot-act-can-access-eu-based-cloud-data/11225 On top of that, the Safe Harbor certification, which is essentially a self-certification for which you don't even *need* a 3rd party to look at how you deal with personal data (thank you Department of Commerce!), forms a basis on which US companies can "verify" they comply with the EU data protection directives, to allow them to do business here. It's basically a joke. https://en.wikipedia.org/wiki/International_Safe_Harbor_Privacy_Principles Michael -- https://niij.org/
-- Unsubscribe, change to digest, or change password at: https://mailman.stanford.edu/mailman/listinfo/liberationtech
