The EU is making it harder for US cloud giants to get full security certification
Your cloud provider will likely be affected
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
US and other non-EUcloudproviders will have to forfeit some of their control to EU-based partners if they are to maintain their position in the European market, reports have claimed.
According to a new draft document seen byReuters, the proposed change will see non-EU-based cloud service providers having to enter a joint venture with EU-based bodies in order to obtain an EU cybersecurity label, which allows them to handle sensitive data.
Should it be approved, it will affect the three most prominent cloud providers that occupy between two-thirds and three-quarters of the entire market for both the personal and business sectors:Amazon,Microsoft, andGoogle.
US cloud in the EU
As well as having to enter a partnership with an EU company, staff chosen to handle sensitive data will have to be located within one of the Union’s member states and have undergone specific screening.
These are the best cloud hosting providers around>Microsoft warns of cloud data “blockages” as EU-US deal nears>The EU really shouldn’t be blocking US cloud giants, new study says
A ‘high+’ level appears to have been added to the ‘basic,’ ‘substantial,’ and ‘high’ tiers that form categories of The Cybersecurity Act, whereby ‘high+’ would require an EU company to have total control over the cloud service “to mitigate the risk of non-EU interfering powers undermining EU regulations, norms and values.”
‘High’ and ‘high+’ would also be subject to data localization measures within the EU.
Despite the apparent effort to protect the EU as a whole, one industry source suggested that each country would have the discretion to impose requirements as it sees fit (via Reuters).
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
It is believed that the European Commission may implement a final version of the rules once they have been agreed by the countries that make up the European Union, following discussions at the upcoming ENISA Cybersecurity Certification Conference.
With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!
This new malware utilizes a rare programming language to evade traditional detection methods
A new form of macOS malware is being used by devious North Korean hackers
Arcane season 2 confirms the hit series isn’t just one of the best Netflix shows ever made – it’s an animated legend that’ll stand the test of time
