The US CLOUD Act is a 2018 US law that lets US authorities access data held by US companies, regardless of where in the world that data is stored.
The Clarifying Lawful Overseas Use of Data Act (CLOUD Act) is a US law from 2018. It obliges US companies to give US authorities access to stored data on demand, even when that data is held outside the USA.
If a European company uses a US provider or its European subsidiary, the data can in principle fall under the CLOUD Act. An EU server location does not protect against this, because the law attaches to the provider's nationality.
Access on the basis of the CLOUD Act can conflict with the GDPR, which strictly regulates the transfer of personal data to third countries. This creates a legal tension for companies.
SecureCloud is a German provider, operates its data centres in Germany and is subject exclusively to German and European law. As a result, the service is not subject to the US CLOUD Act and supports the data sovereignty of companies.
Yes. If the provider is a US company, the CLOUD Act can also apply to data stored in European data centres.
Not on its own. What matters is whether the provider is subject to US law. A German location under the control of a US group offers no reliable protection.
By choosing providers that are subject exclusively to European law and have no corporate ties to the USA.
Unsere Experten beantworten Ihnen gerne alle Fragen.