This is all nice and well, but here on the ground, the NSA scandal has really bad consequences for tech companies.
Do you know what it is like to live in a jurisdiction where you are actually liable for what happens to the data of your users? Especially if it is data on teachers and pupils, which are (due to the fact that they are children) especially protected, as is the case with education software startups?
I can't use the Amazon cloud, can't use App engine, Cloudflare or anything that is connected to the US or companies with a US mother firm.
The whole situation is one infuriating clusterfuck and I find it really insulting when people claim that there are no real consequences to the recent scandal.
> Do you know what it is like to live in a jurisdiction where you are actually liable for what happens to the data of your users?
No offense but it's this same reason that U.S. companies would be pilloried if they hosted all their users' private data on a cloud service hosted in Russia or China.
Even without an entity like the NSA an organization in the EU could not simply assume that any other nation obeys their data privacy rules without a strong bilateral agreement dictating just that.
That's not a consequence of the "recent scandal" as even now the scandal hasn't revealed anything with regard to non-U.S. networks that wasn't already known: the NSA intercepts communications abroad when they can, just as they've done since 1949.
The NSA stories have certainly brought it to prominence but anyone hosting their user's private data on Amazon's US-EAST before this, without a guarantee that the U.S. would obey European data privacy laws at the Virginia data center, was guilty of negligence at best, since no such agreement has ever been made to my knowledge.
What the NSA stories have helped to illustrate is that there is an essential disconnect between applying nation-level laws to global-level networks that needs to be rectified one way or another.
Actually, what you can't do is expose that data to the Internet, period, if you're attempting to be consistent with your, "NSA spying is causing me problems" viewpoint, because the NSA is monitoring network traffic around the globe, and decrypting what it can and storing what it can't.
So, if you're going to be internally consistent, you're going to have to delete all digital copies of all "sensitive" data, lest you yourself get hacked.
Or you could accept that with all operations there exists risk, and attempt to mitigate that risk using methods which are consistent between one another.
Not using US products gets you nowhere, in other words.
> I can't use the Amazon cloud, can't use App engine, Cloudflare or anything that is connected to the US or companies with a US mother firm.
But is that because of NSA spying, or because of the lack of privacy laws in the US? Because I know people who've not sent any user data to the US for years, certainly before they found out about NSA spying.
> Do you know what it is like to live in a jurisdiction where you are actually liable for what happens to the data of your users? Especially if it is data on teachers and pupils, which are (due to the fact that they are children) especially protected, as is the case with education software startups?
Do you know what it is like to live in a jurisdiction where you are actually liable for what happens to the data of your users? Especially if it is data on teachers and pupils, which are (due to the fact that they are children) especially protected, as is the case with education software startups?
I can't use the Amazon cloud, can't use App engine, Cloudflare or anything that is connected to the US or companies with a US mother firm.
The whole situation is one infuriating clusterfuck and I find it really insulting when people claim that there are no real consequences to the recent scandal.