When an organisation stores its data with an overseas cloud provider, the laws of the country where that data sits apply in addition to New Zealand law.The data owner remains responsible for making sure the data is handled in a way that complies with all applicable laws, including New Zealand's own privacy legislation. It is not the cloud provider’s responsibility.This leaves data owners with a practical problem. A government or court in the host country can compel a cloud provider to hand over data, often without notifying the data owner. Sometimes under legal orders that may not require judicial warrants in the New Zealand senseUS law can apply to data kept in New ZealandUS law extends this further. Under America’s Cloud Act, that nation’s authorities can demand access to data held by US-owned companies even when that data is physically stored in another country.It could mean your private information is readily available to US government agencies.Which is why data sovereignty is so…
No comments yet. Log in to reply on the Fediverse. Comments will appear here.