About the Author
How does the patriot act apply to data in American owned data centres? Does the patriot act apply? Can they simple snoop in and take what they want when they want?
The question is, “Can the US government invoke the invoke the Patriot Act to collect data for surveillance purposes without permission from American companies that provide cloud facilities?”
Some experts claim that the Act can be enacted on American soil only. Others say that any data centre with ties to US companies is fair game.
“non-US customers only need to worry about the privacy laws in the country that their data is hosted in”
What do Microsoft owners of the Azure platform say? “non-US customers only need to worry about the privacy laws in the country that their data is hosted in”. Well that’s Steve Martin, senior director for servers and business tools position.
Speaking at a Windows Azure conference Martin was adamant that all of Microsoft’s non-US customers are exempt from data collection activities if the data is hosted outside of the US.
“If a European customer is running in a European data centre, it will not be subject. That particular piece of hardware is owned by that European company. This is something we have been dealing with for several years now,” Martin explained.
The DPS Azure platform has been set up so data is only held in the UK and no replicated elsewhere which puts it all firmly under the DPA or new GDPR.