this post was submitted on 01 May 2025
459 points (98.5% liked)
Technology
69804 readers
3037 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I assure you that is not true. Even in my "mild" domain of marketing analytics, vendors exist that are EU companies with EU storage also run by EU companies or they offer on-premise deployment. And serious companies with users that may signal personal details through behavioral data seek such solutions.
Vendors do exist but they are not required to do so. My last job was at a software vendor, GDPR compliant, ISO & SOC 2 certified, controlling personal data (including salary information) of EU citizens who were not opted in (their employer is the one on the contract). Not healthcare levels of sensitive but still pretty icky in terms of EU law and we had tons of German friends who are real sticklers for the rules. We stored everything on AWS infrastructure and it has never caused any issue during certification or security assessment by clients.