What is Data Sovereignty?
Data sovereignty refers to the laws applicable to data because of the country in which it is physically located. The legal rights of data subjects (any individual whose personal information is being gathered, retained, or processed), and data protection requirements, depend on the location in which their data is stored. Accordingly, organizations will have different responsibilities for data in different geographical locations.
Data sovereignty is distinct from data localization and data residency:
- Data localization refers to a governmental policy that prohibits organizations from transferring data outside a specific location. It is a special case of data sovereignty.
- Data residency is a decision by businesses to store data in a specific geographical location. Organizations might store data in a specific location to avoid legal requirements, take advantage of tax regimes, or for performance reasons. Once an organization chooses a location for its data, it is subject to data sovereignty—the laws applicable in that region.
In this article:
- What is Data Sovereignty in the Cloud?
- Data Sovereignty vs. Data Localization vs. Data Residency
- Key Considerations and Challenges Surrounding Data Sovereignty
- 3 Steps to Ensure Data Sovereignty in Cloud Computing
- Data Sovereignty with Cloudian