Any organization with sensitive data needs to take precautions before moving applications to the cloud. In many cases, regulatory compliance may prevent certain types of applications from moving tot he cloud any time soon.
Understanding that, what about the jurisdictional risks associated with a third party cloud provider essentially managing a portion of your data center? What about provisions of the Patriot Act that might compel your cloud provider to disclose or provide your sensitive data to a law enforcement agency such as the department of Homeland Security.
I’m surprised that a Canadian cloud provider hasn’t emerged that operates outside of the jurisdiction of the Patriot Act. While, such a provider would be certainly be appealing to Canadian organizations that don’t want (or cannot allow) their data to be in the hands of a foreign government, it would also be of interest to American organizations trying to maximize data security while still enjoying some of the benefits of the cloud.
What am I missing?