Microsoft opta per un data trustee tedesco
Microsoft will host data in Germany to hide it from US spies [...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities. http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur... Mi pare una prospettiva interessante, che contribuisce a sottolineare come occorra fare distinguo fra le imprese IT statunitensi. AM -- Prof. Avv. Alessandro Mantelero Politecnico di Torino Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration http://staff.polito.it/alessandro.mantelero @mantelero EMAIL POLICY: twice a day (Mon-Fri)
Microsoft non è l'unica a localizzare in UE: Amazon <www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early-2017.html> Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored EMC <www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syncplicity-has-an-idea.html> EMC sold Syncplicity to a private equity firm earlier this year. The company offers subscribers a range of ways to store their data: They can keep it on their own premises, in a private cloud, in Syncplicity’s public cloud, or in some combination of those. They can access that data from desktops, laptops and mobile devices. The new option coming in 2016 will let users select the storage region of their choice with one click and no additional steps, Syncplicity says. That could mean choosing clouds based in Europe as the sole repository for their files. Also next year, the company will go one step further to help ensure data is protected under European privacy law. It will set up a Syncplicity Cloud Orchestration Layer in Europe so data stored on the continent isn’t even controlled in the U.S. Metadata used in managing the stored information, such as user names, email addresses and file names, will be stored and processed in Europe. As an additional step while new rules are worked out, Syncplicity now includes so-called Model Clauses in its Cloud Services Agreements. Those clauses, crafted by the European Union, are designed to meet privacy requirements. Microsoft and other companies already use them. Pare anche che sia in stallo l'accordo che dovrebbe sostituire Safe Harbor, e proprio sulla questione dell’accesso ai dati da parte dell’intelligence nazionale <www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pact-by-early-2016.html> Both sides are said to believe that an agreement can be finished by early next year, but negotiators are stuck in part on what kind of access national intelligence agencies will have to people’s online data. The information includes social media posts and online search histories, as well as more traditional information like financial and personal records. European officials want the United States to provide greater assurances over how their citizens’ data may be made available to American intelligence agencies when it is transferred outside the region. European policy makers are concerned that without further limits, any new data-transferring agreement would be challenged in European courts, according to two people with knowledge of the matter who spoke on the condition of anonymity. By contrast, United States officials said that they believed they had provided sufficient guarantees, and that the recent ruling failed to consider improvements to American privacy safeguards over the last two years that restrict what information is accessible to the country’s intelligence agencies. Se non si raggiungesse questo accordo, saranno ancora una volta i giudici a tagliare dei nodi che la politica non riesce più a sbrogliare. A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania. Però non mi tornano molto i conti: se vincesse il governo USA, questo porterebbe ad una riallocazione dei soggetti autorizzati a operare nel mercato UE, favorendo attori UE e sfavorendo quelli US, attualmente dominanti. Al contrario, una vittoria di Microsoft (attualmente sostenuta da UE) porterebbe ad un rafforzamento delle multinazionali USA, più libere di operare un UE pur mantenendosi basate in US. Alberto On 11/11/2015 16:06, Alessandro Mantelero wrote:
Microsoft will host data in Germany to hide it from US spies
[...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities.
http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur...
Mi pare una prospettiva interessante, che contribuisce a sottolineare
come occorra fare distinguo fra le imprese IT statunitensi.
AM
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino
Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree
program in Management and IP Law
Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration
http://staff.polito.it/alessandro.mantelero @mantelero
EMAIL POLICY: twice a day (Mon-Fri) _______________________________________________ nexa mailing list nexa@server-nexa.polito.it https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
mi sembra che l'articolo rappresenti una soluzione diversa dalla mera localizzazione. Si tratta di una soluzione che riguarda l'organizzazione societaria.
A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania.
L'articolo parla di trattamento dati "under the control of a Germany company as a data trustee" non di mera delocalizzazione. v. anche qui: http://www.prnewswire.co.uk/news-releases/microsoft-announces-plans-to-offer... These new cloud services will be a first of their kind innovation from a global hyper-scale cloud provider, in that access to customer data stored in these new datacenters will be under the control of T-Systems, a subsidiary of Deutsche Telekom, an independent German company acting as a data trustee. Microsoft will not be able to access this data without the permission of customers or the data trustee, and if permission is granted by the data trustee, will only do so under its supervision. AM On Wed, 11 Nov 2015 18:00:39 +0100 Alberto Cammozzo <ac+nexa@zeromx.net> wrote:
Microsoft non è l'unica a localizzare in UE:
Amazon <www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early-2017.html> Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored
EMC <www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syncplicity-has-an-idea.html> EMC sold Syncplicity to a private equity firm earlier this year. The company offers subscribers a range of ways to store their data: They can keep it on their own premises, in a private cloud, in Syncplicity’s public cloud, or in some combination of those. They can access that data from desktops, laptops and mobile devices. The new option coming in 2016 will let users select the storage region of their choice with one click and no additional steps, Syncplicity says. That could mean choosing clouds based in Europe as the sole repository for their files. Also next year, the company will go one step further to help ensure data is protected under European privacy law. It will set up a Syncplicity Cloud Orchestration Layer in Europe so data stored on the continent isn’t even controlled in the U.S. Metadata used in managing the stored information, such as user names, email addresses and file names, will be stored and processed in Europe. As an additional step while new rules are worked out, Syncplicity now includes so-called Model Clauses in its Cloud Services Agreements. Those clauses, crafted by the European Union, are designed to meet privacy requirements. Microsoft and other companies already use them.
Pare anche che sia in stallo l'accordo che dovrebbe sostituire Safe Harbor, e proprio sulla questione dell’accesso ai dati da parte dell’intelligence nazionale <www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pact-by-early-2016.html> Both sides are said to believe that an agreement can be finished by early next year, but negotiators are stuck in part on what kind of access national intelligence agencies will have to people’s online data. The information includes social media posts and online search histories, as well as more traditional information like financial and personal records. European officials want the United States to provide greater assurances over how their citizens’ data may be made available to American intelligence agencies when it is transferred outside the region. European policy makers are concerned that without further limits, any new data-transferring agreement would be challenged in European courts, according to two people with knowledge of the matter who spoke on the condition of anonymity. By contrast, United States officials said that they believed they had provided sufficient guarantees, and that the recent ruling failed to consider improvements to American privacy safeguards over the last two years that restrict what information is accessible to the country’s intelligence agencies.
Se non si raggiungesse questo accordo, saranno ancora una volta i giudici a tagliare dei nodi che la politica non riesce più a sbrogliare. A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania.
Però non mi tornano molto i conti: se vincesse il governo USA, questo porterebbe ad una riallocazione dei soggetti autorizzati a operare nel mercato UE, favorendo attori UE e sfavorendo quelli US, attualmente dominanti. Al contrario, una vittoria di Microsoft (attualmente sostenuta da UE) porterebbe ad un rafforzamento delle multinazionali USA, più libere di operare un UE pur mantenendosi basate in US.
Alberto
On 11/11/2015 16:06, Alessandro Mantelero wrote:
Microsoft will host data in Germany to hide it from US spies
[...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities.
http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur...
Mi pare una prospettiva interessante, che contribuisce
a sottolineare come occorra fare distinguo fra le imprese IT statunitensi.
AM
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino
Nexa Center for Internet and Society | Director of
Privacy
Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration
http://staff.polito.it/alessandro.mantelero @mantelero
EMAIL POLICY: twice a day (Mon-Fri) _______________________________________________ nexa mailing list nexa@server-nexa.polito.it
https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
_______________________________________________ nexa mailing list nexa@server-nexa.polito.it https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration http://staff.polito.it/alessandro.mantelero @mantelero EMAIL POLICY: twice a day (Mon-Fri)
L'articolo di Prnewswire chiarisce: "Microsoft will not be able to access this data without the permission of customers or the data trustee, and if permission is granted by the data trustee, will only do so under its supervision." Ammesso che poi queste autorizzazioni non debbano essere concesse in modo estensivo, questa potrebbe essere in effetti una soluzione innovativa. MS offrirebbe la propria infrastruttura logica (software, processi) a TSystems che ci mette l'hardware e poi interagisce con il *proprio* cliente e con i dati. Ciò conferma la mia perplessità sul vantaggio della commissione a sostenere MS contro il governo US, specie dopo la sentenza Schrems. Se permane il criterio di prevalenza della nazionalità dell'impresa sulla territorialità del dato, saranno favorite -come in questo caso- imprese UE per i dati trattati un UE; mentre se prevale il criterio della territorialità sulla nazionalità, come vogliono MS e Commissione, le imprese dominanti resteranno in US e tratteranno il dato in UE su infrastrutture proprie e con propri dipendenti. Alberto On 11/11/2015 18:19, Alessandro Mantelero wrote:
mi sembra che l'articolo rappresenti una soluzione diversa dalla mera localizzazione. Si tratta di una soluzione che riguarda l'organizzazione societaria.
A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania.
L'articolo parla di trattamento dati "under the control of a Germany company as a data trustee" non di mera delocalizzazione.
v. anche qui: http://www.prnewswire.co.uk/news-releases/microsoft-announces-plans-to-offer...
These new cloud services will be a first of their kind innovation from a global hyper-scale cloud provider, in that access to customer data stored in these new datacenters will be under the control of T-Systems, a subsidiary of Deutsche Telekom, an independent German company acting as a data trustee. Microsoft will not be able to access this data without the permission of customers or the data trustee, and if permission is granted by the data trustee, will only do so under its supervision.
AM
On Wed, 11 Nov 2015 18:00:39 +0100 Alberto Cammozzo <ac+nexa@zeromx.net> wrote:
Microsoft non è l'unica a localizzare in UE:
Amazon <www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early-2017.html>
Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored
EMC <www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syncplicity-has-an-idea.html>
EMC sold Syncplicity to a private equity firm earlier this year. The company offers subscribers a range of ways to store their data: They can keep it on their own premises, in a private cloud, in Syncplicity’s public cloud, or in some combination of those. They can access that data from desktops, laptops and mobile devices. The new option coming in 2016 will let users select the storage region of their choice with one click and no additional steps, Syncplicity says. That could mean choosing clouds based in Europe as the sole repository for their files. Also next year, the company will go one step further to help ensure data is protected under European privacy law. It will set up a Syncplicity Cloud Orchestration Layer in Europe so data stored on the continent isn’t even controlled in the U.S. Metadata used in managing the stored information, such as user names, email addresses and file names, will be stored and processed in Europe. As an additional step while new rules are worked out, Syncplicity now includes so-called Model Clauses in its Cloud Services Agreements. Those clauses, crafted by the European Union, are designed to meet privacy requirements. Microsoft and other companies already use them.
Pare anche che sia in stallo l'accordo che dovrebbe sostituire Safe Harbor, e proprio sulla questione dell’accesso ai dati da parte dell’intelligence nazionale <www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pact-by-early-2016.html>
Both sides are said to believe that an agreement can be finished by early next year, but negotiators are stuck in part on what kind of access national intelligence agencies will have to people’s online data. The information includes social media posts and online search histories, as well as more traditional information like financial and personal records. European officials want the United States to provide greater assurances over how their citizens’ data may be made available to American intelligence agencies when it is transferred outside the region. European policy makers are concerned that without further limits, any new data-transferring agreement would be challenged in European courts, according to two people with knowledge of the matter who spoke on the condition of anonymity. By contrast, United States officials said that they believed they had provided sufficient guarantees, and that the recent ruling failed to consider improvements to American privacy safeguards over the last two years that restrict what information is accessible to the country’s intelligence agencies.
Se non si raggiungesse questo accordo, saranno ancora una volta i giudici a tagliare dei nodi che la politica non riesce più a sbrogliare. A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania.
Però non mi tornano molto i conti: se vincesse il governo USA, questo porterebbe ad una riallocazione dei soggetti autorizzati a operare nel mercato UE, favorendo attori UE e sfavorendo quelli US, attualmente dominanti. Al contrario, una vittoria di Microsoft (attualmente sostenuta da UE) porterebbe ad un rafforzamento delle multinazionali USA, più libere di operare un UE pur mantenendosi basate in US.
Alberto
On 11/11/2015 16:06, Alessandro Mantelero wrote:
Microsoft will host data in Germany to hide it from US spies
[...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities.
http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur...
Mi pare una prospettiva interessante, che contribuisce a
sottolineare come occorra fare distinguo fra le imprese IT statunitensi.
AM
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino
Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree
program in Management and IP Law
Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration
http://staff.polito.it/alessandro.mantelero @mantelero
EMAIL POLICY: twice a day (Mon-Fri) _______________________________________________ nexa mailing list nexa@server-nexa.polito.it https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
_______________________________________________ nexa mailing list nexa@server-nexa.polito.it https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino
Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration
http://staff.polito.it/alessandro.mantelero @mantelero
EMAIL POLICY: twice a day (Mon-Fri)
Alberto Cammozzo scrive: Microsoft non è l'unica a localizzare in UE: Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored Ecco, in Inghilterra. Bravi, così siamo tutti più tranquilli: http://www.lastampa.it/2015/11/05/tecnologia/cos-luk-spier-lattivit-online-d egli-utenti-NuhrLfrBul9pOHQXyHvM9L/pagina.html Carlo -----Messaggio originale----- Da: nexa-bounces@server-nexa.polito.it [mailto:nexa-bounces@server-nexa.polito.it] Per conto di Alberto Cammozzo Inviato: mercoledì 11 novembre 2015 18:01 A: nexa@server-nexa.polito.it Oggetto: Re: [nexa] Microsoft opta per un data trustee tedesco Microsoft non è l'unica a localizzare in UE: Amazon < <http://www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-b y-early-2017.html> www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early- 2017.html> Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored EMC < <http://www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-ha rbor-syncplicity-has-an-idea.html> www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syn cplicity-has-an-idea.html> EMC sold Syncplicity to a private equity firm earlier this year. The company offers subscribers a range of ways to store their data: They can keep it on their own premises, in a private cloud, in Syncplicitys public cloud, or in some combination of those. They can access that data from desktops, laptops and mobile devices. The new option coming in 2016 will let users select the storage region of their choice with one click and no additional steps, Syncplicity says. That could mean choosing clouds based in Europe as the sole repository for their files. Also next year, the company will go one step further to help ensure data is protected under European privacy law. It will set up a Syncplicity Cloud Orchestration Layer in Europe so data stored on the continent isnt even controlled in the U.S. Metadata used in managing the stored information, such as user names, email addresses and file names, will be stored and processed in Europe. As an additional step while new rules are worked out, Syncplicity now includes so-called Model Clauses in its Cloud Services Agreements. Those clauses, crafted by the European Union, are designed to meet privacy requirements. Microsoft and other companies already use them. Pare anche che sia in stallo l'accordo che dovrebbe sostituire Safe Harbor, e proprio sulla questione dellaccesso ai dati da parte dellintelligence nazionale < <http://www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-tra nsfer-pact-by-early-2016.html> www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pa ct-by-early-2016.html> Both sides are said to believe that an agreement can be finished by early next year, but negotiators are stuck in part on what kind of access national intelligence agencies will have to peoples online data. The information includes social media posts and online search histories, as well as more traditional information like financial and personal records. European officials want the United States to provide greater assurances over how their citizens data may be made available to American intelligence agencies when it is transferred outside the region. European policy makers are concerned that without further limits, any new data-transferring agreement would be challenged in European courts, according to two people with knowledge of the matter who spoke on the condition of anonymity. By contrast, United States officials said that they believed they had provided sufficient guarantees, and that the recent ruling failed to consider improvements to American privacy safeguards over the last two years that restrict what information is accessible to the countrys intelligence agencies. Se non si raggiungesse questo accordo, saranno ancora una volta i giudici a tagliare dei nodi che la politica non riesce più a sbrogliare. A quanto capisco, sarà infatti lesito dellappello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania. Però non mi tornano molto i conti: se vincesse il governo USA, questo porterebbe ad una riallocazione dei soggetti autorizzati a operare nel mercato UE, favorendo attori UE e sfavorendo quelli US, attualmente dominanti. Al contrario, una vittoria di Microsoft (attualmente sostenuta da UE) porterebbe ad un rafforzamento delle multinazionali USA, più libere di operare un UE pur mantenendosi basate in US. Alberto On 11/11/2015 16:06, Alessandro Mantelero wrote:
Microsoft will host data in Germany to hide it from US spies > > [...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities.
<http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-su rveillance> http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur veillance
Mi pare una prospettiva interessante, che contribuisce a sottolineare come occorra fare distinguo fra le imprese IT statunitensi.
AM
--
Prof. Avv. Alessandro Mantelero
Politecnico di Torino
Nexa Center for Internet and Society | Director of Privacy > Politecnico di TorinoTongji University| Coordinator, Double Degree program in Management and IP Law > Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration > > <http://staff.polito.it/alessandro.mantelero> http://staff.polito.it/alessandro.mantelero
@mantelero
EMAIL POLICY: twice a day (Mon-Fri)
_______________________________________________
nexa mailing list
<mailto:nexa@server-nexa.polito.it> nexa@server-nexa.polito.it
<https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa> https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
_______________________________________________ nexa mailing list <mailto:nexa@server-nexa.polito.it> nexa@server-nexa.polito.it <https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa> https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
sono gia' in irlanda On 11/11/2015 18:34, Blengino wrote:
Alberto Cammozzo scrive:
Microsoft non è l'unica a localizzare in UE:
… Amazon will open *_London_* datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored
Ecco, in Inghilterra. Bravi, così siamo tutti più tranquilli: http://www.lastampa.it/2015/11/05/tecnologia/cos-luk-spier-lattivit-online-d...
Carlo
-----Messaggio originale----- Da: nexa-bounces@server-nexa.polito.it [mailto:nexa-bounces@server-nexa.polito.it] Per conto di Alberto Cammozzo Inviato: mercoledì 11 novembre 2015 18:01 A: nexa@server-nexa.polito.it Oggetto: Re: [nexa] Microsoft opta per un data trustee tedesco
Microsoft non è l'unica a localizzare in UE:
Amazon
<www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early-2017.html <http://www.pcworld.com/article/3002521/amazon-will-open-london-datacenter-by-early-2017.html>>
Amazon will open London datacenter by early 2017 AWS plans to offer its third location for Europeans worried about where their data is stored
EMC
<www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syncplicity-has-an-idea.html <http://www.pcworld.com/article/3003424/what-to-do-for-privacy-after-safe-harbor-syncplicity-has-an-idea.html>>
EMC sold Syncplicity to a private equity firm earlier this year. The company offers subscribers a range of ways to store their data: They can keep it on their own premises, in a private cloud, in Syncplicity’s public cloud, or in some combination of those. They can access that data from desktops, laptops and mobile devices.
The new option coming in 2016 will let users select the storage region of their choice with one click and no additional steps, Syncplicity says. That could mean choosing clouds based in Europe as the sole repository for their files.
Also next year, the company will go one step further to help ensure data is protected under European privacy law. It will set up a Syncplicity Cloud Orchestration Layer in Europe so data stored on the continent isn’t even controlled in the U.S. Metadata used in managing the stored information, such as user names, email addresses and file names, will be stored and processed in Europe.
As an additional step while new rules are worked out, Syncplicity now includes so-called Model Clauses in its Cloud Services Agreements. Those clauses, crafted by the European Union, are designed to meet privacy requirements. Microsoft and other companies already use them.
Pare anche che sia in stallo l'accordo che dovrebbe sostituire Safe Harbor, e proprio sulla questione dell’accesso ai dati da parte dell’intelligence nazionale <www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pact-by-early-2016.html <http://www.nytimes.com/2015/11/07/technology/europe-wants-to-reach-data-transfer-pact-by-early-2016.html>>
Both sides are said to believe that an agreement can be finished by early next year, but negotiators are stuck in part on what kind of access national intelligence agencies will have to people’s online data.
The information includes social media posts and online search histories, as well as more traditional information like financial and personal records.
European officials want the United States to provide greater assurances over how their citizens’ data may be made available to American intelligence agencies when it is transferred outside the region.
European policy makers are concerned that without further limits, any new data-transferring agreement would be challenged in European courts, according to two people with knowledge of the matter who spoke on the condition of anonymity.
By contrast, United States officials said that they believed they had provided sufficient guarantees, and that the recent ruling failed to consider improvements to American privacy safeguards over the last two years that restrict what information is accessible to the country’s intelligence agencies.
Se non si raggiungesse questo accordo, saranno ancora una volta i giudici a tagliare dei nodi che la politica non riesce più a sbrogliare.
A quanto capisco, sarà infatti l’esito dell’appello Microsoft contro US Govt a risolvere la questione, visto che per per ora, le imprese US sono soggette a warrant federale anche per dati degli utenti conservati in territorio UE, per quanto possa essere garantista la Germania.
Però non mi tornano molto i conti: se vincesse il governo USA, questo porterebbe ad una riallocazione dei soggetti autorizzati a operare nel mercato UE, favorendo attori UE e sfavorendo quelli US, attualmente dominanti.
Al contrario, una vittoria di Microsoft (attualmente sostenuta da UE) porterebbe ad un rafforzamento delle multinazionali USA, più libere di operare un UE pur mantenendosi basate in US.
Alberto
On 11/11/2015 16:06, Alessandro Mantelero wrote:
Microsoft will host data in Germany to hide it from US spies > > [...] opening new data centers in Germany will provide a future safeguard against US demands for data. The company has also announced plans for new data centers in the UK, but Germany's data-protection laws are some of the most rigorous in Europe. By placing its data centers under the control of a Germany company as a "data trustee," Microsoft is forcing any requests for information to be routed through Germany authorities.
http://www.theverge.com/2015/11/11/9711378/microsoft-german-data-centers-sur...
Mi pare una prospettiva interessante, che contribuisce a sottolineare come occorra fare distinguo fra le imprese IT statunitensi.
AM
--
Prof. Avv. Alessandro Mantelero
Politecnico di Torino
Nexa Center for Internet and Society | Director of Privacy > Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law > Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration > > http://staff.polito.it/alessandro.mantelero
@mantelero
EMAIL POLICY: twice a day (Mon-Fri)
_______________________________________________
nexa mailing list
nexa@server-nexa.polito.it <mailto:nexa@server-nexa.polito.it>
_______________________________________________
nexa mailing list
nexa@server-nexa.polito.it <mailto:nexa@server-nexa.polito.it>
https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
_______________________________________________ nexa mailing list nexa@server-nexa.polito.it https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
Nessun virus nel messaggio. Controllato da AVG - www.avg.com <http://www.avg.com> Versione: 2016.0.7227 / Database dei virus: 4457/10980 - Data di rilascio: 11/11/2015
In data mercoledì 11 novembre 2015 18:34:56, Blengino ha scritto:
http://www.lastampa.it/2015/11/05/tecnologia/cos-luk-spier-lattivit-online-d egli-utenti-NuhrLfrBul9pOHQXyHvM9L/pagina.html orribile. ma non è ancora legge. c'è ancora la possibilità di evitare che, in materia di mass surveillance, l'USA contagi l'Europa. IMHO evitare che succeda è fondamentale. m.c.
ho cambiato il topic perchè diverso da la scelta di Microsoft sul data trustee europeo. Sono già in atto diverse prese di posizioni, tra cui quella di GNI (di cui Nexa fa parte) https://www.globalnetworkinitiative.org/news/gni-meets-uk-officials-discuss-... e quella di Cannataci (UN Special Rapporteur on the right to privacy) http://www.wired.co.uk/news/archive/2015-11/10/surveillance-investigatory-po... AM On Wed, 11 Nov 2015 22:48:10 +0100 Marco Ciurcina <ciurcina@studiolegale.it> wrote:
In data mercoledì 11 novembre 2015 18:34:56, Blengino ha scritto:
http://www.lastampa.it/2015/11/05/tecnologia/cos-luk-spier-lattivit-online-d egli-utenti-NuhrLfrBul9pOHQXyHvM9L/pagina.html orribile. ma non è ancora legge. c'è ancora la possibilità di evitare che, in materia di mass surveillance, l'USA contagi l'Europa. IMHO evitare che succeda è fondamentale. m.c.
-- Prof. Avv. Alessandro Mantelero Politecnico di Torino Nexa Center for Internet and Society | Director of Privacy Politecnico di Torino–Tongji University| Coordinator, Double Degree program in Management and IP Law Nanjing University of Information Science and Technology | Part-time Expert, School of Public Administration http://staff.polito.it/alessandro.mantelero @mantelero EMAIL POLICY: twice a day (Mon-Fri)
In data mercoledì 11 novembre 2015 16:06:41, Alessandro Mantelero ha scritto:
Mi pare una prospettiva interessante, che contribuisce a sottolineare come occorra fare distinguo fra le imprese IT statunitensi. mm.. diventa difficile far valere la violazione della sentenza Schrems nei confronti di Microsoft.. Probabilmente anche altre imprese USA faranno qualcosa del genere entro fine anno. A meno che preferiscano difendere un idea "nebulosa" di cloud computing :-) m.c.
participants (5)
-
Alberto Cammozzo -
Alessandro Mantelero -
Blengino -
Marco Ciurcina -
Stefano Quintarelli