Timo Hilbrink wrote: [...]
https://www.ripe.net/publications/documentation/cloud-technology-status/ [...]
Thank you, Timo, for raising this important topic. I fully share your concerns, and I believe it’s essential for us as RIPE NCC members to critically consider the implications of moving to U.S.-based cloud providers. While data may be stored physically within the EU, the issue of extraterritorial application of laws like the CLOUD Act remains. This means that personal and sensitive data could still be subject to U.S. jurisdiction, regardless of local data protection standards or the GDPR. For many of us – particularly those from countries that need to handle data carefully due to geopolitical considerations – this presents a significant risk. It would be valuable if RIPE NCC could clarify how these potential legal implications were factored into their internal privacy assessments and whether alternative providers were considered. Data sovereignty and privacy are foundational values, and I believe RIPE NCC, as an organization committed to internet security and integrity, should especially take these issues into account. I look forward to hearing other members’ views and hope this prompts a constructive discussion. -- nemox.net Rudolf E. Steiner r.steiner@nemox.net http://nemox.net/pdat/res/