Patriot Act Clouds Picture For Tech

Harperdog writes "Politico has a piece on how the Patriot Act is interfering with U.S. firms trying to do business overseas in the area of cloud computing. Here's a quote: 'The Sept. 11-era law was supposed to help the intelligence community gather data on suspected terrorists. But competitors overseas are using it as a way to discourage foreign countries from signing on with U.S. cloud computing providers like Google and Microsoft: Put your data on a U.S.-based cloud, they warn, and you may just put it in the hands of the U.S. government.'"

Probably, but...

...you put it anywhere on the "cloud", and it's one mis-step away from being everywhere.

Re:Probably, but...

[CmdrPony]

Just like with colocation and other hosting services. You have to trust someone though, and big cloud providers are required to be good at what they do. They're too big to fail.

Re:Probably, but...

That's why I use the Personal Cloud

Re:Probably, but...

[rtfa-troll]

Awesome. It's like tethering. A completely invented feature created by taking something away that wasn't missing in the first place. The people who think these things up have imaginations worthy of Iain M Banks or almost even Iain Banks. .

Re:Probably, but...

[crutchy]

i trust who i work with in person, but it also means that if they fuck up i can give them an earful and see their reaction :)

Re:Probably, but...

[GrumpySteen]

How is remotely accessing a hard drive on your home computer in any way, shape or form like tethering? Did you not look at the product that was linked or do you have no clue what tethering is?

And what do think think has been taken away? It's an external hard drive that has all the functionality of an external hard drive. It includes some software to make it easier to set it up for remote access from other PCs, your phone, etc., but that adds functionality, it doesn't decrease it. What do you think is missing?

Re:Probably, but...

Now, if someone could make some appliances that I could drop at my place, and at a few friends' places, with all three mirroring with ironclad consistency, that would be a true "personal cloud". Ideally, at the block level, as opposed to file level like rsync, although if one mounted a file based filesystem via loopback and used rsync, that would be close enough.

Of course, having a client just send up changes to files and not the complete files would be important, a la Dropbox. Even better, have the client encrypt all data being uploaded before it goes up and decrypt as it comes back, and the encryption can be a password, a keyfile, or a generated nonce that is protected by a public/private keypair where the private key is stored on a cryptographic token.

For a number of uses, this would be the ideal cloud setup.

If one decides to take it a step further, one can do what an old (I'm talking antediluvian) Mac application did -- it would present a drive to the user, but all files stored would be distributed among other machines in the LAN. Add an encryption layer, and a layer of redundancy, and that would be a very usable cloud. People who run the cloud servers can allow only themselves, users/groups they authorize, or anyone store data.

Re:Probably, but...

[rtfa-troll]

We used to have "networked hard disks" or "file servers". Then we started having cloud servers which did the same but you lost the personal control. Now the marketing people started selling a "personal cloud" which is in fact exactly what you were selling originally, but this time they are selling the "personal" bit as if it's a new feature. In exactly the same way as phones originally only provided network connectivity; then people added browsing; then U.S. operators started blocking the network connectivity, finally the marketing people could start selling you back "tethering" which is exactly what you had near the beginning, but this time you have to pay extra.

Re:Probably, but...

[GrumpySteen]

Not the same at all.

The old phone tethering you speak of was disabled on newer phones and you had to pay an extra charge for it.

Remote access to a hard drive is not disabled in any way. Nothing prevents you from manually setting up remote access to a drive and they still sell the drives without the package for a reduced price. Western Digital's offering simply includes, for an extra price, a software package that supposedly makes it easier to set up the remote access.

Re:Probably, but...

[rtfa-troll]

Are you being obtuse or has my communication ability deserted me. I think it must be the latter.

Privacy is the feature which has been disabled in the cloud. Now you pay for a "personal cloud" and all it does is give you back the privacy that you had in the first place on a standard networked file server.

Re:Probably, but...

[GrumpySteen]

That's even stupider than my interpretation of what you said.

The cloud didn't disable your ability to store things locally. What kind of idiot thinks it did? The cloud is nothing more than a new name for paying for storage on someone else's servers, a concept that's been around since the days of the mainfraims, long before the internet was invented.

I didn't realize I was talking to a moron.

Re:Probably, but...

[pete6677]

You would almost think the U.S. government WANTS U.S. companies to relocate overseas.

Re:Probably, but...

[WOOFYGOOFY]

Too big to fail.. that was a deliberate joke right? When are we going to learnt hat when companies fail, there are no consequences to the corporate officers and that's all that matters. No matter what happens, they'll be very rich for the rest of their lives. This is a non trivial point. They can literally afford to be blase, indifferent, lazy, ego maniacs, crazy for power, for money, for status, or delusional ideologues who shit on the law and your privacy or the security of your data for their "cause" or just to collude with your competitor or to serve as a bride in a quid-pro-quo with same. There are no societal constraints on their behavior. Their company being caught out for criminal, civil or moral wrongdoing, even on a grand scale, means nothing to them. These are the facts of life that we all know to be true. Anyone who puts their data, their life's blood data, their crown jewels on a cloud, gets exactly what they deserve. Screwed.

Re:Probably, but...

[rtfa-troll]

Ah; you are being obtuse. We are comparing cloud storage as a product with "personal cloud storage" as an advertised product of Western digital and with a standard old fashioned networked file server. If you buy "cloud storage" as in Amazon S3 or sugarsync then obviously that storage isn't local. You would need an intelligence level where the local slugs would start laughing at to think that we were discussing about local hard disks.

Re:Probably, but...

[GrumpySteen]

Wow. You didn't even look at the link you're talking about, did you. Western Digital's personal cloud storage is,a local hard drive.

Go on. Look. Tell me how that is not a hard drive when the photo is of a drive, the advertising copy speaks of the drive, the contents line says "network drive" and includes a comparison to other local hard drives.and even mistakenly includes the drive's previous name, "My Book Live home network drive" (this is, after all, a rebranded product meant to take advantage of the obsession with "cloud storage."

And that is the link you responded to with "Awesome. It's like tethering.", which it absolutely is not, so it bloody well is what is under discussion and you' are proving that I was right. You are an absolute moron.

Re:Probably, but...

[GrumpySteen]

Oh, and in case you're too lazy or stupid to scroll up and find the link you responded to, here it is:

http://www.amazon.com/Western-Digital-Personal-Cloud-Storage/dp/B0047FL85U

Go on. Take a good long look at it and hang your idiot head in shame.

Re:Probably, but...

[rtfa-troll]

God you are slow.

Here's me in the very first response to your first post.

We used to have "networked hard disks" or "file servers". Then we started having cloud servers which did the same but you lost the personal control. Now the marketing people started selling a "personal cloud" which is in fact exactly what you were selling originally

Here's you.

Not the same at all.

So it seems, from your rather unclear last post, that the stuff said in the very beginning of this post finally got through to you.

Now let's see what you say now:

You didn't even look at the link you're talking about, did you. Western Digital's personal cloud storage is,a local hard drive.

Well; that depends what you mean by local storage. It's actually Gigabit Ethernet attached; it may or may not be local. So it's quite probable that you didn't even read the product description of the system you are talking about at the moment that you are accusing someone else of not having read it.

But, let's be charitable and assume that, as an educationally subnormal person, by "local storage" you meant "can be connected to locally". In which case you have just tried to argue the point I made in my original post against me. We now agree that the new WD could storage is the same as having a personal file server or NAS.

To be frank, I'm all up for a flamefest, but you aren't even funny. Could you at least try a bit harder. You act like the only insult you know is "moron" and you probably don't even know what it means. You might want to start with an insult dictionary so that, even if your shining wit doesn't exactly come through, you can at least vary your postings a little bit.

Re:Probably, but...

[GrumpySteen]

>Here's me in the very first response to your first post.
>
>We used to have "networked hard disks" or "file servers". Then we started having cloud servers which did the same but you lost the personal control. Now the marketing people started selling a "personal cloud" which is in fact exactly what you were selling originally

We still have file servers and network servers. Cloud servers did not take away our personal control over network servers and file servers, they simply gave people an option to let someone else manage the server. An option which, I might add, has been around since before network servers and file servers were inexpensive enough for an individual to own. Nothing has been lost, nothing has been gained. We've simply got a catchy name for something that has existed for decades.

You you keep demonstrating that you don't understand this when even a low grade moron could get it. Maybe I should use smaller words or something?

> Well; that depends what you mean by local storage. It's actually Gigabit Ethernet attached; it may or may not be local. So it's quite probable that you didn't even read the product description of the system you are talking about at the moment that you are accusing someone else of not having read it.

This is stupider than anything else you've said. You're honestly suggesting that someone is going to buy this dinky little Western Digital drive and ship it off to someone else so that it's no longer their own storage, local to their own network? There is no datacenter on the planet that would even begin to consider doing that sort of thing.

> To be frank, I'm all up for a flamefest, but you aren't even funny. Could you at least try a bit harder.

Can't defend your idiotic position? Attack the other person's writing style! Nobody will notice that it's a pathetic attempt to distract from the fact that you're a MORON

And moron is an old term for mentally retarded, which is the only explanation I can come up with for your lack of ability to understand what I've said. Happy now? You should be. Retards are always happy.

Yep

Doesn't matter if you comply with EU data protection rules, we still don't trust you.

Re:Yep

More importantly, since there are US laws which contradict the very protections that EU safe harbor rules require, we CAN'T trust US companies to abide by our data protection requirements. We are bound by law to ensure these protections, so sending the data to the US is arguably illegal. The only reason why anyone still does it is that enforcement is so lax.

Re:Yep

[GrumpySteen]

Would you kindly step up the enforcement, then? We all know that the US government isn't going to listen to it's citizens, but it's just as obvious that they listen to corporations. Maybe if Amazon, Google and a few other major cloud storage providers take a huge hit, they'll tell the government to fix the situation.

Re:Yep

[crankyspice]

Maybe if Amazon, Google and a few other major cloud storage providers take a huge hit, they'll tell the government to fix the situation.

No, shops large enough to have influence are likewise large enough to simply setup European subsidiaries, with hardware in Europe and a cadre of European compliance officers, and it's business as usual. "You can choose a Region to optimize for latency, minimize costs, or address regulatory requirements ... Objects stored in a Region never leave the Region unless you transfer them out. For example, objects stored in the EU (Ireland) Region never leave the EU." http://aws.amazon.com/s3/ (emphasis added)

Re:Yep

[Grishnakh]

But can they really get around the Patriot Act this way? After all, if they're American companies, with their headquarters located in Silicon Valley, aren't they still required to follow American laws, including any wholly-owned subsidiaries they may have? (disclaimer: IANAL) Some company located in Switzerland, for example, with absolutely zero physical presence in the USA, would not have this problem or this potential legal liability.

Re:Yep

[canadian_right]

It is illegal in BC, Canada to store any personal information on any server physically residing in the USA. This law is an acknowledgement that the USA Patriot act can lead to Canadian information, protected by Canadian laws, being revealed without judicial oversight.

We don't care if it is a cloud or not, it can't be stored in the USA.

Re:Yep

[Grishnakh]

As an American, I think more countries (and the rest of the Canadian provinces too) should enact laws like this.

Re:Yep

[GrumpySteen]

Stop squashing my hopes and dreams, dammit. The government and the 1% do a good enough job of that without you helping them :p

Re:Yep

[chrb]

Wholly-owned international subsidiaries are separate legal entities under the control of the parent company. They are obliged to follow the laws of the country that they are based in, but under no obligation to obey the law of a foreign land (such as the U.S.), as they are outside of that legal jurisdiction. However, the parent company is under such an obligation, and since it controls the subsidiary, under the Patriot Act it has a legal obligation to compel the subsidiary to comply. But if, in complying, the subsidiary may break local laws, then there are problems. Basically, the company has to decide whether to violate U.S. law or local law.

To whom do these laws apply? All U.S. citizens and permanent resident aliens, entities and organizations located in or out of the United States (including any subsidiary or foreign offices overseas) must comply with the USA PATRIOT Act, Executive Order 13224, and Office of Foreign Assets Control regulations. Further, U.N. Security Council Resolution 1373 and other resolutions have the force of international law binding on all member states.

http://www.mott.org/resources/patriotact/faqs.aspx#q6

Whether the Patriot Act could be used to compel a U.S. parent to disclose records held by a Canadian subsidiary remains a matter of debate. The B.C. Commissioner Report found that it is a “reasonable possibility” that the FISA Court would order production of documents that are within the custody or control of a U.S. company, such as a U.S. parent with access to records held by a Canadian subsidiary.[14] If a U.S.-linked company makes a disclosure to U.S. authorities without the consent of the Canadian individuals named, this could result in the Canadian organization that transferred the information breaching Canadian privacy legislation unless the disclosure meets an exception in the applicable Canadian privacy legislation. http://library.findlaw.com/2005/May/10/245866.html

Any company that is wholly-owned by a U.S.-based corporation cannot guarantee that the data will not leave its customer-designated datacenters or servers. Google would not budge from its first and final response, and Microsoft could not offer guarantees to not move data outside the EU under any circumstances. These subsidiary companies and their U.S.-parent corporations cannot provide the assurances that data is safe in the UK or the EEA, because the USA PATRIOT Act not only affects the U.S.-based corporations but also their worldwide wholly-owned subsidiary companies based within and outside the European Union.

http://www.zdnet.com/blog/igeneration/case-study-how-the-usa-patriot-act-can-be-used-to-access-eu-data/8805?pg=4&tag=content;siu-container

Re:Yep

[ironjaw33]

As an American, I think more countries (and the rest of the Canadian provinces too) should enact laws like this.

I recently applied for a job in Canada. The one I applied for as well as several others I saw said that precedent is given to Canadians over foreign nationals. I've never seen an American government or industry job make the same disclaimer. President is the only thing that comes to mind.

Re:Yep

[Grishnakh]

Very good analysis. It seems to me that some foreign governments need to proactively warn these subsidiaries in their countries that they risk jail time if they follow the orders of their US-owned parent companies.

Re:Yep

[Grishnakh]

That's because in the USA, preference is given to whoever they can pay the least, no matter how incompetent they are at the job.

I'm reminded of a Dilbert comic where the PHB says he only wants top-notch candidates, but wants to pay average salaries.

Most advanced countries have governments which look out for the interests of their citizens, who vote for them. It's not like this in the US, where the government only looks out for the interests of lobbyists and large corporations.

Re:Yep

Your the world's self proclaimed police - get team America to fix it.

Re:Yep

In the US, precedent is automatically given to US nationals and green card holders. It's hard for a US employer to even hire non citizens without going thru a lot of crap - farm workers paid low wages excepted.

Re:Yep

It is my understanding you are correct - a US company can be compelled to provide access to data it holds, or has access to - it does not have to physically be located on US soil. It is a standard part of hosting sales pitches to demonstrate that the company does not have any control by a US organisation. Back in the 'good old days' the NSA would have just (illegally?) stolen the data & none of us would have to worry about it.

Re:Yep

...the parent company is under such an obligation, and since it controls the subsidiary, under the Patriot Act it has a legal obligation to compel the subsidiary to comply. But if, in complying, the subsidiary may break local laws...

LOL WUT? The subsididiary is in the foreign country and bound by foreign laws under which it operates. Compelling, indeed even asking, that subsidiary to break the laws under which it operates is at the very least conspiracy. The parent U.S. company and its officers would likely find whatever control they had seized as the assets used to further this conspiracy, as well as arrest warrants with there name on them passed to INTERPOL. Trying to punish the foreign subsidiary's officers for not breaking the laws under which it is governed is also at the very least conspiracy.

Re:Yep

Do you have a link to this? I am in BC and we are in the process of moving to a new host and this would be VERY useful information to have during the decision making process.

Re:Yep

[canadian_right]

BC Privacy act

see 30.1

No comment

No comment

A new way?

[TheRaven64]

No, this isn't new, it's an argument that's been used since the USAPATRIOT Act passed. Well, maybe they're saying 'cloud' instead of 'costing' or 'colocation'. The other good argument is 'the USA has no data protection laws so if you do business in the EU and host your data in the USA then you're opening yourself up to potential liability'.

Re:A new way?

It's far older than the patriot act.

Your accountants office, your doctors, records management companies, etc. People and companies have always had to care about who has their information, where they're located and related jurisdictional concerns. And hokey as it is to say, no man is an island. We all trust other parties with information.

That's not to say we should take it lightly, just that this particular problem isn't a wholly new creation of this particular legislation.

Re:A new way?

[chrb]

The British government has an advice page for companies that want to export data: Sending personal data outside the European Economic Area (Principle 8). It is okay to send personal data to the U.S. as long as the U.S. company agrees to a contract protecting the data. They even provide model contracts.

Although the United States of America (US) is not included in the European Commission list, the Commission considers that personal data sent to the US under the “Safe Harbor” scheme is adequately protected. When a US company signs up to the Safe Harbor arrangement, they agree to: follow seven principles of information handling; and be held responsible for keeping to those principles by the Federal Trade Commission or other oversight schemes. Certain types of companies cannot sign up to Safe Harbor. View a list of the companies signed up to the Safe Harbor arrangement on the US Department of Commerce website. In July 2007, the EU and the US signed an agreement to legitimise and regulate the transfer of passenger name record information (PNR) from EU airlines to the US Department of Homeland Security (DHS). This agreement is regarded as providing adequate protection for the personal data in question.

Re:A new way?

[Gonoff]

an agreement to legitimise
In other words, they were already doing it. The idea was to stop them breaking the law without stopping them doing what they were doing.

This proves that US companies are unsuitable for having any contact with my data but, as others have said, it pre-dates the "Patriot Act". The difference is that US citizens now have bigger penalties for not doing it. Previously it used to be just your disregard for my privacy in favour of your bottom line.

Well why not?

[Pastor+Jake]

Friends,

I don't understand these companies' hesitance when deciding to do business with US-based companies. Sure, the data may need to be seen by the government, but we aren't China; the data will be kept safe while our researchers are doing God's work by looking for pedophiles, rapists, and terrorists. Perhaps they could even insert biblical references into the cloud, in order to spread the Word to those who would not otherwise hear it.

Your Friend,
Jake

Re:Well why not?

[forkfail]

Please - someone tell me that this is snark.

Re:Well why not?

Zelous anti-theist troll is obvious.

Re:Well why not?

[Dogtanian]

I know you're trying hard, but "Pastor Jake" is just a little too obvious to be the next Doctor Bob, as I suspect it is meant to be. That's on top of the fact that these things never work as well the second time round. Sorry!

Re:Well why not?

[M0j0_j0j0]

Come on the guy has just started, give him a chance, a holy chance if not too much

Re:Well why not?

Let me enlighten you Jake... America is full of greedy corrupt fanatic idiots and most people prefer not to deal with that.

Re:Well why not?

You've got to wait a while for everybody to forget Dr. Bob before you start another account like that, grub.

Your style, although hilarious, is very recognizable.

Re:Well why not?

[Grishnakh]

It's not anti-theist, it's anti USA-theism. Europe has plenty of Christians, after all, as do many other parts of the world, but Christianity as it's practiced in the USA is a very weird and disturbing mix of fundamentalist religion and politics. After all, you can go into any typical American "evangelical Christian" (aka fundamentalist) church and they'll preach about how the USA needs to wage wars in various countries, how you (the congregation) needs to vote for these particular politicians, how we need to worship The Invisible Hand, how rich people are better people than the rest of us because God has blessed them with so much money and "success", etc. Now obviously, not all Christians in America believe this crap, but the numbers of fundies has actually outgrown the number of "mainstream" Protestants in the USA, and they are a very strong political force (esp. since they are so politically involved, unlike most other religions). This of course is completely different from the types of Christianity practiced in Europe for example, where fundamentalism is almost non-existent.

Re:Well why not?

God should look for pedophiles, companies do business. When push comes to shove and its ethics vs profits - then profits win (almost) every time!

Pastor Jake, you may want to consider reality as an option when it comes to having a place to live in.

Re:Well why not?

[gv250]

Christianity as it's practiced in the USA is a very weird and disturbing mix of fundamentalist religion and politics.

Perhaps that is so, but your further statements weaken your argument by showing your own bias.

After all, you can go into any typical American "evangelical Christian" (aka fundamentalist) church

Repeat after me: evangelism != fundamentalism. There are evangelicals who are not fundamental. And there are fundies who aren't particular evangelical. Evangelism is the process of spreading what you believe. Fundamentalists share a certain set of beliefs. They are not mutually requisite characteristics; neither are they mutually exclusive.

Specifically, I am an evangelical preacher who is decidedly not fundamental. My churches (two) are, I imagine, reasonably typical American evangelical Christian churches.

and they'll preach about how the USA needs to wage wars in various countries,

I have never preached the need to wage war, for or against anything. Period.

how you (the congregation) needs to vote for these particular politicians,

Any preacher, of any stripe, who does this in the US risks losing his church's 501(c)3 status. The IRS takes a dim view of PACs pretending to be churches.

how we need to worship The Invisible Hand, how rich people are better people than the rest of us because God has blessed them with so much money and "success", etc.

For an excellent example of a fundementalist evangelical mega-church pastor who specifically denounces these ideas, read "Radical" by David Platt..

Now obviously, not all Christians in America believe this crap, but the numbers of fundies has actually outgrown the number of "mainstream" Protestants in the USA,

Citation, please. Here, I'll loan you one. According to [something I just found on the Internet], of the five largest denominations in North America, only one, the Southern Baptist Convention, fits your stereotype. The fastest-growing denominations are LDS, Assemblies of God, the Roman Catholic church, and the Orthodox Church in America. None of these fit your image, either.

and they are a very strong political force (esp. since they are so politically involved, unlike most other religions).

The question isn't how politically involved the churches are as corporate entities. The question is how politically involved are the members. The most recent POTUS have been (in reverse order): UCC, UMC, SBC, Episcopalian, PCUSA, SBC, and Quaker. Only SBC comes close to fitting your stereotype, and I doubt you'd describe Bill Clinton or Jimmy Carter as the war-mongering money-loving elitists that so upset you.

Please: 1) don't confuse evangelism with TV-broadcasting, money-loving, success-preaching fundamental evangelicals. 2) Don't believe that fundies control the US religious landscape any more than you should believe that FOX news controls the political landscape, and 3) Don't believe everything you see on TV about Americans, or Christians.

I bid you peace.

Re:Well why not?

[Grishnakh]

Repeat after me: evangelism != fundamentalism.

They're not totally mutually exclusive, there's a huge amount of overlap between the two. Most of the megachurches that are so popular now are both.

Any preacher, of any stripe, who does this in the US risks losing his church's 501(c)3 status. The IRS takes a dim view of PACs pretending to be churches.

They don't quite come out and say "vote for Bachmann" (or "vote for Romney" in the LDS churches), but they're pretty good at making sure you know who they do and don't want you to vote for, without naming names. The LDS church was very instrumental in getting Prop.8 passed in California.

Citation, please. Here, I'll loan you one [hartsem.edu]. According to [something I just found on the Internet], of the five largest denominations in North America, only one, the Southern Baptist Convention, fits your stereotype.

You're obviously missing something here. If your version of Protestantism is a "denomination", then you're a "mainstream" Protestant. The ones that have taken over the US in the past few decades are "non-denominational Christian". They don't have a denomination, as they eschew such things, and they don't have a real structure, just a big giant church in a metro area with 10,000 members and a monstrous budget. They usually have a name like " Christian Church".

Even the Southern Baptists are pretty mild compared to what these churches preach, and these churches are the new mainstream because they have more members than all the mainstream denominations. The Roman Catholics are a separate thing, as they're not Protestant, nor is LDS.

Please: 1) don't confuse evangelism with TV-broadcasting, money-loving, success-preaching fundamental evangelicals.

These TV preachers and the churches that are rapidly growing in popularity generally preach the same thing. Maybe you don't hang out in these circles or preach that crap, but they're there. Why do you think Bachmann was so popular? She's certainly not getting her support from the Catholics or Mormons and definitely not members of the Orthodox church.

3) Don't believe everything you see on TV about Americans, or Christians.

Bad advice. Americans are voting for these extremist politicians, so it's not just the media making up things; the people are following right along. And I specifically said before (as I've said many times to counter the popular /. notion that all Christians worldwide are loons like the ones here in the US) that all Christians aren't like this, just the ones in America. The Christians in places like Canada and Europe aren't crazy morons like most of the ones here in the USA where fundamentalism reigns supreme. But if you're one of those people who thinks America==the world then I can see how you'd be confused.

Re:Well why not?

[Gonoff]

fundamentalism is almost non-existent
Christian fundamentalists here just do not like the word as people associate it with fundamentalists in the USA. There are plenty. They are just very different from yours.

Their politics are often middle of the road or slightly left-of-centre but this stance is seen as screaming Marxist if you regard your democrats as left of centre. A lot of them are pacifists, some are even Conscientious Objectors and a large amount of them were very unhappy about the illegal invasion of Iraq - but that fits in with the population as a whole. There may be a few around that are completely anti-military but I don't know anyone like that.

Any leader that tried to tell their members who to vote for would be asking for trouble. It may be OK in the USA but I imagine there is a law against that here in the UK. I have heard plenty tell people to look carefully and that they ought to vote for people who they think will do the right thing etc.

Re:Well why not?

[Grishnakh]

The ones here probably don't usually come out and say "vote for Bachmann!", but there's easy ways of talking around it so without naming names, they make it quite clear who they want you to vote for.

As for the Democrats being left-of-center, do you mean the Democrats in the 1990s, the Democrats in the early 2000s, or the Democrats in 2011 who are even farther right than Bush ever was? :-) Compared to today's Democrats, just about anyone would be a "screaming Marxist" by comparison.

Re:Well why not?

[blue_goddess]

in Europe for example, where fundamentalism is almost non-existent.

Actually, no. France != Europe. But in Europe you can find christian fundamentalists inside the most numbering church in a particular state, probably Roman Catholic in Spain, Poland, Italy, Orthodox in Greece, Ukraine and Russia and so on. You just cannot generalise and say "Church/denomination/community X is fundamentalist", because there are great differences inside the Church.

Depending on state, its history and general financial wellbeing they represent different political options, from extreme left to extreme right. And center-left is rarely "fundamentalist", they typically represent the open wing of that community.

Re:Well why not?

[Gonoff]

We have politicians of various types who would identify themselves as Christian. I can't even say if there are more conservatives than socialists. Tony Blair famously decided to keep quiet about his beliefs until he had finished politics because he didn't want people to think he is "a nutter". I already felt he was that. We don't seem to favour them because of their religion. It's just not relevant. The idea is to consider what they do or will do, not what they are or what they did.

Just a couple of years ago, I heard that the Democratic party has shared ideas and brains with our Conservative party . Apparently, their ideas on many things are pretty similar..
The UK Conservative party is the most right-wing but mainstream political party in western Europe. They have a very hard time finding anyone else in Europe to talk to who has not been identified as either some sort of nut, or is so insignificant as to make the conversation pointless.

I am not a Conservative despite being the product of what you would call a private school. Neither am I a supporter of the Labour party. I am somewhere in between. This is how I understand the word "liberal" - open minded and generous (I hope I am anyway).

Goes both ways

[Pozican]

American companies are scared their data might land in china and copied. This is only news in that the US is turning into the same crazy police state that we've thought was limited to china and north korea.

Re:Goes both ways

no, not really. hushmail hosts in canada for instance to avoid the patriot act.

'Warn' ?

[unity100]

do they even need to 'warn' ? previous incidents and documents that are in the open shows that u.s. govt, police, secret service, departments etc can wantonly request data from these services and get it. many of these, we discussed here.

Who can blame them?

[Calibax]

Four thoughts:

They may well be right in thinking their data will be more accessible to the US government.

If I were an overseas competitor, I'd certainly use this as a reason to not to use a US provider. In a heartbeat.

The law of unintended consequences bites the US yet again.

This wouldn't be an issue if the US government hadn't acted the way it has over the last 10 years. The US government has so little trust overseas that people have no trouble thinking the worst of it. Karma is a bitch.

Re:Who can blame them?

No doubt about it. Government hands are in everything now days, and there is constate abuse of power. Now, nobody trust them.

Government created it's own mess.

Re:Who can blame them?

[Synerg1y]

US Government or George W. Bush Jr.? We were doin great till that monkey came along.

I still think we need a better system for repealing laws, or perhaps we just need to wait for the god fearing soccer moms who don't know what a browser is to drop out of society. One can argue we'd get a new wave of idiots then, but at least they'd be tech savvy enough to forecast something like this.

Our current government thinks any data in its borders actually belongs to it, and that the person generating it may graciously hold on to it as long as he isn't a pedo or a terrorist or isn't named Julian.

The Patriot Act though... anybody respectable who's had to deal with it, has probably relocated far away from the states. Not to mention people who don't fly anymore because of the TSA and the fact you can't bring toe nail clippers with you on a trip anymore. What's funny is the TSA says http://blog.tsa.gov/2009/05/tsa-urban-legends-nail-clippers.html . Quite contradictory to consumer experience.

Re:Who can blame them?

[kozubik]

Not all providers are based in a single nation.

Amazon, for instance, has AWS locations around the world, although that probably doesn't help you much given their track record.

But rsync.net (I am the founder) has storage locations in Zurich and Hong Kong, in addition to the US. These sites are protected, just like the US sites, by the Warrant Canary:

http://www.rsync.net/resources/notices/canary.txt

So while I agree that everyone in the world should be wary of USA PATRIOT, it's not a given that non-US consumers have to avoid US providers across the board.

Re:Who can blame them?

[Jiro]

The US isn't being run by Bush. It's being run by Obama (who the Europeans gave a Nobel Prize to). Bush lost the election; it's time putting the blame where it belongs.

Re:Who can blame them?

[Synerg1y]

Obama's done right and wrong and isn't a saint by a long shot, however it's going to take time to undo the damage bush caused, him leaving office does not immediately end wars and fix global depressions.

Re:Who can blame them?

[Patent+Lover]

The US isn't being run by Bush. It's being run by Obama (who the Europeans gave a Nobel Prize to). Bush lost the election; it's time putting the blame where it belongs.

Uh, which election did Bush lose?

Re:Who can blame them?

People are OK with it. Here we are, ten years after the 9/11 attack with things getting worse instead of better. People still vote for the same things because they have the two basics, bread and circus, McDonalds and TV. And considering how the romans lived, I'd say loss of privacy should be the least of your concerns. (although with the banks today, you could say they found a clean, easy type of slavery)

Sheep MTDD-4453X3

Re:Who can blame them?

[clonehappy]

2004 for sure and probably 2000 if you want to dig deep enough.

Re:Who can blame them?

So which unjustified war that cost trillions war and which global recession did Obama start again?

Re:Who can blame them?

No, but Bush didn't add Libya to the list without even discussing the issue with congress (Congress must declare wars, presidents may not), and it took Obama to come up the policy of lying on responses to FOIA requests. I didn't like Bush, but Obama acts like a dictator

Re:Who can blame them?

[zlives]

FYI Bush didn't lose the election, Sarah Palin did. Bush probably would have won again could he but run once more. I have faith... and so can you :)

Re:Who can blame them?

[Grishnakh]

To be fair, many countries' governments have their hands in "everything" these days. The 1700s are long since over, get used to it. For instance, in China, the government is intimately involved in many industries, and many companies are partially or wholly owned by the State (usually depending on their strategic importance). In Europe, the governments again are intimately involved in many industries (such as healthcare in some countries, energy, etc.), and have very strong regulatory powers. This isn't that different from the USA, where the government is intimately involved in the defense (weapons), prison, energy, and now healthcare industries. The problem with the USA is that the govt involvement doesn't seem to actually help anything, except perhaps its involvement in energy (which is usually at the state level, not national; this is how we are able to have electric utility monopolies and still have low or reasonable rates); it got involved in healthcare recently, for instance, yet this hasn't improved healthcare one iota, unlike other countries where the government's involved strongly in healthcare (like in the UK) and as a result, while it may be a little slow, everyone gets decent care at a low cost and people don't go bankrupt just by having one surgery. Worse, the govt involvement with the defense contractors has resulted in the country getting involved in many very expensive wars that are bankrupting the nation and killing and maiming thousands of servicemen, and the govt involvement in the private prison industry (which in any civilized country would never be allowed to exist!) results in the law enforcement agencies trying to round up as many people for minor and victimless "crimes" as possible so that these private prisons can make more money imprisoning them.

While the governments of Europe obviously aren't perfect, they don't show the utterly blatant abuses of power the US govt does, and they actually seem to provide some decent services for their citizens in exchange for their tax money, whereas the US govt takes our money, and spends far more (by borrowing from the Chinese and printing lots of money), doing things that don't help the citizens at all, and doing absolutely nothing that benefits them.

Re:Who can blame them?

[Grishnakh]

And Obama is different from Bush how?

http://nothingchanged.org/
http://americanextremists.thecomicseries.com/comics/170

Re:Who can blame them?

53 years

http://en.wikipedia.org/wiki/The_Ugly_American

Re:Who can blame them?

[gv250]

The previous President was named George W. Bush. There is no "Jr", because his name differs from his fathers, George H. W. Bush.

Re:Who can blame them?

The US isn't being run by Bush. It's being run by Obama (who the Europeans gave a Nobel Prize to). Bush lost the election; it's time putting the blame where it belongs.

Norway awards the Nobel peace prize (not Europe).
Obama was one to get it, but so did Arafat in his time.
So really, its not like its an important endorsement of the man, its a useless prize.
Just smoke screen. Move along.

Re:Who can blame them?

[omb]

Exactly correct, lax big government, overseen by a corrupt and venal Congress, and manipulated by a politicised over-reaching Executive, Obama, will get you exactly this, It is not as if the US was liked before 9/11

Re:Who can blame them?

[chrb]

That's an interesting scheme but it's not very specific. If they stop updating the page, all you know is that they got a request. You have no idea if it was for your data or someone elses.

Re:Who can blame them?

[dissy]

That's an interesting scheme but it's not very specific. If they stop updating the page, all you know is that they got a request. You have no idea if it was for your data or someone elses.

If they stop posting updates, then they got a request.
The only safe assumption at that point is that ALL of their datais now compromised. Yours too.

Any other assumption would simply be foolish and dangerous to make.

Re:Who can blame them?

[Maow]

the Warrant Canary:

http://www.rsync.net/resources/notices/canary.txt

That is freaking brilliant! I'm not in a related field, but am still kicking myself for not having thought of that myself.

So while I agree that everyone in the world should be wary of USA PATRIOT, it's not a given that non-US consumers have to avoid US providers across the board.

The Canary Warrant is not enough to make it safe to store data in the US, it just lets one know that they've been owned.

Re:Who can blame them?

[sdk4777]

He's not funny.

Re:Who can blame them?

Bush lost the election? I wasn't aware he was running.

Re:Who can blame them?

[mabhatter654]

You're kidding?

The great Reagan bombed Lybia almost 30 years ago in a shot-first-tell-congress-later manner. The USA has actions all the time that the President doesn't tell Congress...

As far as secrecy, Obama got nothing on Bush. Hell, under Bush the VICE President claimed he didn't have to produce documents demanded by CONGRESS! Bush didn't bother to reply to FOIA he didn't "feel" was safe... They just "national security" classified everything they could... And Fox News and others rolled along with it. Of course the fact that TWO longstanding News Hosts were forced out due to reporting stuff that was clearly leaked and inconvienent to the administration... But Obama is the bad guy?

Re:Who can blame them?

[mabhatter654]

More important Bush didn't TRY to appoint a successor! The Republican party just let both the President and Vice walk away in the middle of a war and financial crisis. It was obvious that Cheaney was not physically fit to be President in Bush's first term... There was no way he would have physically stood up if he needed to step in. Yet the party didn't replace him with a real contender to maintain the continuity of leadership after the election??? The crop of candidates put up by Republicans was insultingly unsuited to run anything. Even the current race for 2012 is joke none of the Republicans are electable builders of the people.

Re:Who can blame them?

It's awarded by the Nobel committee, in Stokholm. It's presented in Norway.

Re:Who can blame them?

[Jiro]

I know, it's a brain fart. It is true, however, that the Republicans lost the election. It's time to stop blaming bush for things that he may have started (or not in some cases) but which were done by Obama.

Re:Who can blame them?

[zyzko]

While the governments of Europe obviously aren't perfect, they don't show the utterly blatant abuses of power the US govt does, and they actually seem to provide some decent services for their citizens in exchange for their tax money, whereas the US govt takes our money, and spends far more (by borrowing from the Chinese and printing lots of money), doing things that don't help the citizens at all, and doing absolutely nothing that benefits them.

To be fair - governments in Europe are not doing that well either on the debt front (see the ongoing Euro-crisis), here governments have taken the money, borrowed more from the Chinese (and US) and handed out benefits which they really couldn't have afforded in the first place to everybody...

But back to privacy and on topic: Yes, this is "old news" in the sense that US has always been a bit of a bogeyman used in negotiations, before it was NSA or some of the other three letter agencies and it was implied that they secretly spy for big US money. Now the talking point is PATRIOT and it can be used as "see here, they really do this stuff and they don't even have to tell about it". While at the same time ignoring the fact that Europe has similar laws too regarding terrorism. What is interesting is that people in the US are generally more aware of privacy issues and don't like all kinds of registers of people. But when the the bad, bad terrorism is mentioned...all data is free loot. In the Europe it is quite other way around - laws are needed to actually protect people from themselves concerning data collection, and the means for law enforcement to collect data are strictly controlled (for the most part...)

Re:Who can blame them?

[Grishnakh]

To be fair - governments in Europe are not doing that well either on the debt front (see the ongoing Euro-crisis), here governments have taken the money, borrowed more from the Chinese (and US) and handed out benefits which they really couldn't have afforded in the first place to everybody...

Yes I realize the Euro govts aren't exactly financial wizards either, but at least for all that debt, they actually provide useful social services for their citizens. Here in the USA, we have tons of debt, but zero useful services, just a bunch of hand-outs to "too big to fail" corporations and military contractors and mercenaries.

What is interesting is that people in the US are generally more aware of privacy issues and don't like all kinds of registers of people. But when the the bad, bad terrorism is mentioned...all data is free loot. In the Europe it is quite other way around - laws are needed to actually protect people from themselves concerning data collection, and the means for law enforcement to collect data are strictly controlled (for the most part...)

Exactly, which is why anyone trusting their data to a US company is an idiot. You have to assume that any data you store with a US company is easily accessible by the US government, and then in turn by any corporations that are favored by that government.

Re:Who can blame them?

The Nobel committee in Stockholm awards all the Nobel prizes except the Peace Price.

The Nobel Peace Price is awarded by the Norwegian Nobel Committee.

(There is a tangled historic reason for this, see wikipedia)

Re:Who can blame them?

the Warrant Canary:

http://www.rsync.net/resources/notices/canary.txt

That is freaking brilliant!

Credit where it's due: the canary scheme has been thought up by Jessamyn West -- see the Librarian.net section on the Wikipedia page.

It is common sense, not the patriot act.

[gessel]

If you put your data in the cloud, you put it in the hands of not just the US government, but every government the cloud company does business with. And also in the hands of every underpaid employee in the company; and while some companies may claim otherwise, their claims are unverifiable and unenforceable. "Cloud" services have their place - it is for data that is intrinsically public and ephemeral. Nobody should ever trust any cloud service with data that is proprietary or private or irreplaceable.

Most obviously, the "free" services are predicated on exploiting the value of their users as product to customers that are not the users. The model makes sense in some cases, for example a forum, where the shared public content is willing coproduced by users of the forum, exchanging their content creation efforts for use of the forum itself, the forum exploiting that content to attract eyeballs to advertisers that pay the bills.

While there are strong logical reasons why cloud services are intrinsically untrustable (ultimately, he who owns the hardware, owns the data), a simple thought experiment proves the folly: how hard is it to bribe an employee of a cloud service to give you inappropriate access to someone's data? Do you think you couldn't find one employee in one company somewhere? While one may be able to find companies that are currently resistant to easy attacks, cloud companies come and go like the .coms that they are are, and with inevitable waning economic optimism, so too wanes employee loyalty. In the eventual asset transactions that follow, acquiring companies of even trusted entities are unknowns and customers have no recourse and no authority.

At best, the loss of yet another fleeting cloud service means only the loss of the associated data and whatever codependent business line the cloud service customer bet on the serial risk of the success of the cloud company itself.

The premise of handing your proprietary data to another person for remote, invisible processing and care is fundamentally flawed. Your interests are not aligned and their interests will evolve and ultimately diverge or fail.

Foreign companies (and US as well) are well advised to be wary of cloud services.

Re:It is common sense, not the patriot act.

can i put my wee wee in a cloud?

Re:It is common sense, not the patriot act.

I think we're all familiar with the risks of trusting data to outside parties. People have been doing it since... well, forever. But it's just like anything else, a long list of trade-offs.

What's more likely... that someone will break into Intuit and snag your data in a way that's useful to them, or that some jackass in your little company will somehow expose your fileserver? Or nearly as bad, that you'll have a hw failure without working backups? Is it more likely that a disgruntled intuit employee will manage to get access to your payroll data, or that one of your inside employees will dig around and find something on the network with inappropriate permissions? Is it a good idea to have Google handle your email and shared calendars? Will the US government see that you think Sally is hot, and is that worse than you having a shaky exchange machine in the building that never quite worked right with your phones? Is it better to punch holes in your firewall for remote access to an expensive on-site CRM solution, or to pay a salesforce/sugar to manage it for you? What's the risk if someone, someday, breached your CRM database? The list goes on forever.

So yes, cloud services involve risks. Maintaining services internally involves serious risks too (some the same, some different). You have to evaluate both sides if you're interested in solving a problem, based on who you are and what you're outsourcing. If you're an Iranian engineer working on a power plants, maybe you shouldn't store various schematics in a foreign cloud service. If you're a plumbing supply company, you should probably consider hosting your email elsewhere.

I'd think this stuff is obvious by now... it's not like hosted solutions are a new technology.

Re:It is common sense, not the patriot act.

Hear, hear!

As a European

But competitors overseas are using it as a way to discourage foreign countries from signing on with U.S. cloud computing providers like Google and Microsoft

It's not just competitors highlighting that important fact! As a European, I personally don't want my data to fall into the wrong hands, and the hands of the US corporation-state are most definitely wrong.

what's the problem?

I don't see the issue. Unless your using the cloud to store kiddy porn, your terrorism plots, or other illegal shit why do you care? The lady doth protest too much, methinks.

Re:what's the problem?

> Unless your using the cloud to store kiddy porn, your terrorism plots, or other illegal shit why do you care?

Some people, companies, universities and public sector administrators (list not inclusive) DO have something to 'hide' from folks, that have no business in their affairs. Imagine!

Re:what's the problem?

Then it's rather stupid to then be putting that out on the cloud then, no?

Re:what's the problem?

[forkfail]

You don't mind me having a look around your house, do you? Oh, don't bother letting your wife know that we're going to be in - wouldn't want to bother her or anything. What? You don't want strangers poking around? What are you hiding?

Re:what's the problem?

[Aryden]

Because my data, that I do not willingly give to you, should not be accessed by you. It's really that simple. I put things out there so that I can access them easier while I am out and about, not for you, your government, my government, hackers or advertisers to access it. This goes the same with any business in the world. There may be cheap, reliable cloud systems for storing data that will benefit the business, but hinder or harm it if it gets out into the wild. The government should not be able to access the records of foreign business and or foreign citizens without the correct due process that is afforded not only by our constitution, but also by the laws of the business' / citizen's country of residence.

Re:what's the problem?

Sure come on in. I have nothing to hide.

Re:what's the problem?

> implying that selfish corruption of any given individual in Law Enforcement is impossible at the Federal Level, and perhaps especially impossible within the United States.

> implying that any imbalance of power, any power differential could never possibly, will never EVER be abused.

Good luck with that.

Checks and Balances, my friend. We have them for a reason.

Re:what's the problem?

You have way too high an image of yourself. Your lolcats pictures, pirated mp3s and worthless foss code will never be worth any government's time. Prove to me that anyone who is completely innocent and non-suspect has ever has their data just randomly snooped.

Re:what's the problem?

[Aryden]

I've noticed that you have cleaning products under your sinks. Didn't you know that in this state, it is a felony to have cleaning supplies in reach of children under the age of X? Oh, is that your 2 year old son. I'm sorry, I'll have to take you to jail now.

This is a hypothetical, but it is representative of how the government works. More often than not, they are coming in to look for things that will aid them in building a case against you even though they may seem completely benign. While searching your "nothing to hide stash" they come across a picture of you from 10 years ago with a college buddy who is now on a "watch" list, or a family member who speaks out just a little too much about the government.

Just because you think you have nothing to hide, does not actually mean that you have nothing to hide and shouldn't hide anything.

Re:what's the problem?

I don't see the issue. Unless your using the cloud to store kiddy porn, your terrorism plots, or other illegal shit why do you care? The lady doth protest too much, methinks.

This is the classic apologist argument for fascism:

"If you're not doing anything illegal, what have you got to hide?"

Re:what's the problem?

So prove that this HAS been abused or shut up. You idiots are the reason people people label those against these laws as privacy "nuts". Foaming at the mouth at everything doesn't help your case.

Re:what's the problem?

[NotSanguine]

I don't see the issue. Unless your using the cloud to store kiddy porn, your terrorism plots, or other illegal shit why do you care? The lady doth protest too much, methinks.

Because my payroll records, confidential company databases/documents, strategic plans, company emails and other stuff isn't anyone else's business even if there's nothing illegal immoral or fattening about them.

Are you really a moron, or do you just play one on /.?

Re:what's the problem?

[bmo]

The fascists rely on the Just World fallacy to back up their arguments.

The world is just. Shit happens to you because you did something wrong.

It's a load of horse-shit.

--
BMO

Re:what's the problem?

[NotSanguine]

That's odd, coming from an AC. why don't you post your name, address and telephone number so we can make sure?

Re:what's the problem?

[clonehappy]

Posted by an AC. Priceless.

Re:what's the problem?

[NotSanguine]

The government should not be able to access the records of any business and or any citizens without the correct due process that is afforded not only by our constitution, but also by the laws of the business' / citizen's country of residence.

FTFY

Re:what's the problem?

[Aryden]

Thanks, train of thought derailed halfway through that sentence.

Re:what's the problem?

[HarrySquatter]

Why are you storing confidential data on a server controlled by someone else? That's a dumb idea even without this law existing.

Re:what's the problem?

[HarrySquatter]

Because your birth certificate lists "notsanguine" as your legal name, right?

Re:what's the problem?

[HarrySquatter]

Posted by someone who also uses an internet pseudonym. Priceless.

Re:what's the problem?

[Aryden]

I do not "LolCats". I do however have client data, contracts, billing statements, PO data etc stored.

Completely innocent and non-suspect is relative. I can store something on a cloud service that may be perfectly legal for me to do, yet in the host country may not. I've now committed a crime haven't I?

You don't have to be the person that is suspect in the beginning, there is a reason for data mining. Having someone / something snoop all data they can get a hold of in the hopes that they find something they can use. Whether it is actually usable or relevant doesn't matter.

Re:what's the problem?

[hellkyng]

Not quite:

"I've noticed that you have cleaning products under your sinks. Didn't you know that those chemicals could be combined to make a bomb. I'm sorry, I'll have to take you to jail now. Whats that, you want to resist arrest, how silly. I'm sorry about your daddy 2 year old son, but he was a terrorist. Now please ready yourself to be probed for further explosives by our professional TSA agent."

You were close, but not quite there.

Re:what's the problem?

[NotSanguine]

I used to think it was awful that life was so unfair. Then I thought, wouldn't it be much worse if life were fair, and all the terrible things that happen to us come because we actually deserve them? So, now I take great comfort in the general hostility and unfairness of the universe.

--JMS

Re:what's the problem?

screw you. I'm posting AC too because I hate logging into my account. I use a proxy, noscript, different browsers, and don't need my comments tracked. You post your name, address, and telephone number first.

Re:what's the problem?

[NotSanguine]

Because your birth certificate lists "notsanguine" as your legal name, right?

I did not say "Sure come on in. I have nothing to hide." If (and the irony is wonderful) the AC really felt that way, he/she/it wouldn't have a problem posting that information. I, on the other hand, value my privacy. I could just as easily posted as AC (okay, not just as easily I'd have to check the "Post anonymously" checkbox too), but I chose not to. And so, at least within /. my comments are coming from a known quantity.

It wouldn't surprise me if you are, in fact, the AC spouting this ridiculous, trolling bullshit.

Have a nice day!

Re:what's the problem?

[NotSanguine]

Why are you storing confidential data on a server controlled by someone else? That's a dumb idea even without this law existing.

I didn't say I was. I was merely pointing out, with *examples* just how moronic the OPs statements were.

Re:what's the problem?

[NotSanguine]

screw you. I'm posting AC too because I hate logging into my account. I use a proxy, noscript, different browsers, and don't need my comments tracked. You post your name, address, and telephone number first.

Oh, you mean you do those things because you value your privacy, eh? So why are your trolling about "come on in, I have nothing to hide." Please.

Re:what's the problem?

[HarrySquatter]

Except you can see my posting history to know that I'm perfectly fine with spouting shit off without using AC. But nice ad hom, though.

Re:what's the problem?

[Aryden]

touche' sir, touche'

Re:what's the problem?

Last I read every single person arrested under the Patriot Act was completely innocent except for resisting an warrantless search that should have been illegal. When the Feds searched their houses and found absolutely nothing to convict them had quite a bit of data randomly snooped.

Re:what's the problem?

Here is a good place for you to start your research on the misuse of the Patriot Act. http://en.wikipedia.org/wiki/Controversial_invocations_of_the_USA_PATRIOT_Act

Re:what's the problem?

[HarrySquatter]

I do not "LolCats". I do however have client data, contracts, billing statements, PO data etc stored.

Stored on someone else's server that you don't control? That's pretty fucking dumb of you.

Re:what's the problem?

[HarrySquatter]

Yes you made an example of how to be an idiot. Storing confidential days.on someone else's sever and expecting it to stay private is pretty fucking stupid. If I was your customer I'd be pretty fucking livid.

Re:what's the problem?

Yes you made an example of how to be an idiot. Storing confidential days.on someone else's sever and expecting it to stay private is pretty fucking stupid. If I was your customer I'd be pretty fucking livid.

And yet, the thing you are chewing him out over is EXACTLY what the person he originally replied to was proposing.

ie. Unless the material is illegal then privacy and trade secrets are unnecessary (which, as he said, is total bullshit). Paying attention to context can help you avoid looking like an ass.

Re:what's the problem?

[Schmorgluck]

I don't remember for certain which character voiced this. Wasn't it G'Kar? It sound like his kind of stuff.

Re:what's the problem?

[NotSanguine]

Actually, it was Marcus Cole

Re:what's the problem?

Because my payroll records, confidential company databases/documents, strategic plans, company emails and other stuff isn't anyone else's business even if there's nothing illegal immoral or fattening about them.

Why are you storing confidential data on a server controlled by someone else? That's a dumb idea even without this law existing.

So you admit you have no job, since that requires having payroll and tax records stored on a server someone else controls, which you think is dumb.

You admit you own no home, nor rent, nor own a car, since all of those require storing finance and insurance information on a server someone else controls, which you think is dumb.

You even admit to refusing to go to a doctor or hospital when you are ill, since that too would require records about you to be stored on a server someone else controls, which you think is dumb.

...

We have a name for people who refuse to ever get a job, own or rent a home, have a vehicle, and go to the doctor when sick.
I'll let you come up with the non-derogatory version of that name on your own.

Re:what's the problem?

That the US Gov uses it's espionage services to give American businesses advantages over foreign business is nothing new, it has happened before and it will happen again so it's not only illegal stuff that one wants to "hide".

Re:what's the problem?

[Schmorgluck]

Ah, yeah, how could I have forgotten dear ol' Marcus Cole and his weird philosophical streaks?

Re:what's the problem?

[NotSanguine]

"So the question is, 'Who is Morgana Le Fay?" :) :) :)

Re:what's the problem?

I don't see the issue.

That's blindingly obvious. Learn more about the subject instead of looking like a fool.

This all seems to be in order...

Well, at least their fear mongering seems to be accurate. Is it really FUD if it's true, or maybe it's just a good reminder that we used to feel a little more secure in the privacy of our thoughts and data.

lol

[Loopy]

If people think their own government security/spy agencies aren't hacking (or coercing their way) into their own (non-US) infrastructure, then that's more a statement about their own gullibility than those mean, nasty Americans and their dastardly Patriot Act.

Re:lol

My country's cops can't even read email headers. I can't imagine them hacking into anything. I mean, intellectually, I know they must have a few good people on the payroll somewhere, but they sure aren't in evidence.

Re:lol

[forkfail]

Difference is that we, like China, have declared that our secret police have carte blanche to examine your data.

Re:lol

[ColdWetDog]

Yeah. I'm trying to figure out just who anybody would trust as a cloud provider for sensitive data outside the US. Great Britain? France? Turkmenistan? If international 'cloud' providers are bringing this up then pot, meet kettle.

Really, we've been about this time and time again. Some stuff you can put in 'the cloud'. Other stuff ought to be locked in your basement. Your own basement.

Re:lol

Canadian (fully owned and operated only) businesses.

We have pretty much the same laws, rules, and lifestyle as the US but without the Patriot Act (Well, for now, Harper can't seem to keep his lips off {President of the day in US}'s Ass so this is probably going to change in the next 2-3 years)

I really don't like the US anymore, I haven't even bothered to get my family passports as I have no intention of ever going there with them... I'm only 3 hrs from the border but just don't like the idea of traveling there at all. I stick to Visiting other parts of Canada now (note, I used to go to the US almost monthly before the Patriot Act and the requirement to have a passport (I have my passport but it's one more thing to bring, secure, maintain, etc)).

You know what? I don't really feel like I'm missing anything either... once my kids are old enough I will get them passports as I am looking forward to taking them to some museums in England though. Maybe the US tantrums will be over by then and it'll be reasonable to go there and I can check out a few tourists traps there... nah, I think it's only downhill from here :(

I LOVE AMERICA!

[Jeremiah+Cornelius]

Signed, the Necrophiliac.

Re:I LOVE AMERICA!

[CyberDong]

I used to be a necrophiliac too.... but one day the rotten bitch split on me, and it was over.

Re:I LOVE AMERICA!

I used to be a necrophiliac too, but one day I was hitting it with this woman, and suddenly she got up and started demanding "BRAINS!!!!". That ended my perverse obsession with corpses quickly.

Re:I LOVE AMERICA!

I can understand how that would, what with her pushing you off of her and looking elsewhere.

Re:I LOVE AMERICA!

We anonymous cowards aren't the brightest tools in the shed.

Who puts sensitive data offsite unencrypted?

If your data gets accessed without your knowledge or consent then it is your own fault.

Laughable

[koan]

The "cloud" analogy always seemed like "newspeak" to me, designed to get the customer to NOT think about where their data is "Don't worry we will take care of it" while their data is sitting on some cheesy server with questionable security practices and the usual disgruntled suspects.

Seriously what next? A service to wipe your ass because you can't be bothered? (note to self research iPhone controlled bidet)

Since it still has to sit on a server somewhere it might as well be your own server then deploy software that makes it accessible to you on the road, in addition how many jobs does this destroy for IT personal, some of the few decent paying jobs left in the USA.

To me the "cloud" is as ridiculous as Facebook, if you're stupid enough to put your data on FB you deserve what you get.

Re:Laughable

[drooling-dog]

The "cloud" analogy always seemed like "newspeak" to me, designed to get the customer to NOT think about where their data is

Whenever I say "the cloud", I have to wave my arms around and look at the ceiling. I just can't help myself.

Re:Laughable

[johnkoer]

note to self research iPhone controlled bidet

Not quite an iphone, but one with a remote control

Re:Laughable

[GameboyRMH]

This is closer to (perhaps beyond) the GP's idea:

http://theweek.com/article/index/214332/the-6400-toilet-with-its-own-tablet

Can I get a...

USA! USA! USA!

We're MUCH safer then the other guy... TRUST us...

[zarmanto]

Salesman: "That's right, since we don't operate within the borders of those capitalist pig Americans, we're way more trustworthy then them... We absolutely promise that we'll never give away your data to the US government, no matter how many times they ask us.
Customer: That's great... but what about your own government? Do you ever give data up to them?
Salesman: Huh? Well, of course not! At least, not without a court order, anyway... or a law which says we have to for some reason.
Customer: Ah... So how is that different from the US based companies again?
Salesman: Ummm... but... capitalist pigs... ummm...
Customer: I see. Well, this has been very illuminating indeed. I'll get back to you on my decision real soon.
Salesman: ............... Wait... what just happened?

Re:We're MUCH safer then the other guy... TRUST us

[forkfail]

Except that said US court orders can be executed by a secret court with no oversight. Pretty much like China's.

EP!t!

th3re arE

Pet my pee pee!

Soft Kitty,

Warm Kitty,

Little ball of fur.

Happy Kitty,

Sleepy Kitty,

purr purr purr.

Very real issue

[dave562]

We deal with this on a daily basis. Our clients (large Fortune 500 corporations) are requesting that we do not store data in the US. I personally think it has more to do with the fact that they are up to shady financial maneuvers than terrorism, but the end result is the same. It is just another nail in the economic coffin of the United States. The oft claimed, "It is too expensive/risky to do business in the States" rears its ugly head again.

The article talks about "cloud" providers, which we are not. We are more of a SaaS shop, but the regulatory challenges are the same. It all comes down to the client wanting to feel like their data is safe, and that they will have some expectation of privacy. With the United States government declaring the right to come in and seize data (the life blood of any company in this day and age) without any form of real due process, corporations are deciding that they do not want to subject themselves to that unnecessary liability.

It's true

[Baldrake]

I work at a 2,000 person organization outside the US. The institution has formally adopted a policy that no sensitive data can be hosted in the US, precisely due to the Patriot Act.

Don't look for logic in this. They would rather we use a server sitting under some IT guy's desk than use, say, DropBox, which is based on encrypted S3 storage. But perceptions are everything.

Re:It's true

[LilWolf]

Given the security problems DropBox has had, no sane person let alone corporation would use it for anything remotely important.

Attn: Soulskill Post Is In the Wrong Department

[sehlat]

Should be the "All Your Data Are Belong To Us" department.

Cloud computing is pie in the sky

[babboo65]

This will show who's asleep at the wheel. All the services offering SaaS and Cloud-based services including anti-virus, mail storage, NAS, vulnerability management, the list grows - come at a cost. Namely who are the vendors and who are the customers? When a business had all their enterprise servers on-site there was no question who managed, maintained, and monitored the data at rest or in motion. Now, if a company (and what happens if the "company" is a hospital or retailer having to meet auditory compliance) used a cloud-based service offering they have no way of knowing who is managing, monitoring, maintaining or accessing their data. This is off-shore outsourcing gone awry. It may make sense briefly on the bottom-line, but the bean counters are not considering the extended costs of security and vulnerability. Put your trusted data in someone else's hands and you are assuming they are just as, if not more, safe as you would be.

Re:Cloud computing is pie in the sky

[clonehappy]

Thing is, no one really cares. Especially in areas with "auditory compliance". The bottom line is all that matters, and now that most industries have a revolving door between their regulatory agencies and their own personnel departments, it's one big profit orgy at the expense of the middle class. We're really entering an era of pure capitalism, but only for the insiders. Everyone else is run out of business buy the bought-and-paid for regulators. Crony capitalism: It's not just for Wall Street anymore. So if you think any of these people really give one good god damn about the security of your personal information, think again. HIPAA is to your health information what the USAPATRIOT act is to terrorism. Security theatre.

Re:Cloud computing is pie in the sky

[babboo65]

All completely correct. It is the trade-off of convenience over security. In the end it will not be the businesses who suffer the greater loss - it will be the customer / patient. Capitalism is fine - but there must be some form of responsibility. At least in my idealistic version of reality.

Please help meeee

[M0j0_j0j0]

Quick i need assistance, i step into this article today, use the stamina, right in the heart: "Cloud computing is a transformational model for delivering IT Services. Replacing the rigid boundaries of traditional IT infrastructure with the elasticity of the cloud give businesses the agility to quickly react to rapid changes in demand and better serve their customers. "

Correction...

[TallDarkMan]

Put your data on a U.S.-based cloud, they warn, and you may just put it in the hands of the U.S. government.

Try "Put your data on a U.S.-based cloud, they warn, and you WILL put it in the hands of the U.S. government."

Re:Correction...

[Teun]

1+ insightful!

Blatent irony

[crutchy]

Re: "But competitors overseas are using it as a way to discourage foreign countries from signing on with U.S. cloud computing providers like Google and Microsoft"

I'm sure Microsoft and Google are the innocent victims here... not guilty of any sorts of anti-competitive practices at all :)

We'll fix this in a jiffy!

[frank_adrian314159]

We'll just amend the law so that our honored corporate personages are no longer subject to these ignominities while keeping our human scum personages subjugated to the full extent of our data-searching wrath! After all, corporations never support illegal activities, but humans? You can't trust them any farther than you can throw them (or bomb them, or lock them up, etc.).

Canada Too..

[codegen]

You miss the point. The point is the jurisdiction of the court. Both Europe(and Canada) have data protection laws that say that you cannot divulge certain classes of data without a court order. And it has to be a European (resp. Canadian) court that allows you to give up the information. If you store the data in another jurisdiction where another court can order the data to be divulged, then you have a problem. Because the moment that the cloud service obeys a court order from the other jurisdiction and discloses some of your data, you are in breach of the law in your jurisdiction. The sticking point in the case of the U.S. Patriot Act is that the US government can demand the data without any court oversight and in addition prevent the cloud service from notifying you that the data was disclosed. There have been several controversies here in Canada, specifically in the area of health and student information. One of the provincial governments wanted to outsource some of the government health plan data management to a U.S. company (the lowest bidder). It was effectively stopped because they could not guarantee that someone would not use a U.S. court to order the data management company to disclose the health information of a Canadian citizen in the US. As a result, the data had to remain in Canada, and the US company did not get the contract. Similarly, student information at Canadian Universities has been an issue. I am a professor, and I cannot legally put a spreadsheet with student marks or any other student information in dropbox or on any cloud service that stores the data in the U.S. Just this month, I was approached by a web based application provider that wanted me to use their web app in our classes. But the web app stored all of the data in Amazon EC2. I had to tell them that the best I could do is inform the students that the app existed and disclose the fact that their data would exist outside of Canadian jurisdiction, but under such circumstances, we could not formally adopt the software for the course. We can't require the student to student to store data outside of Canadian jurisdiction as a condition of getting the degree (i.e. completing assignments, and passing the course). Any European company is going to be in a similar bind. While the Data Safe Harbour is supposed to provide an out. But it depends on the extent to which the European governments want to make a stink if the US government goes after the European data held by US companies. Even if the government doesn't make a stink, the nightmare of a European company would be the PR disaster of client data being revealed because of court action in the US.

Re:Canada Too..

[Maow]

There have been several controversies here in Canada, specifically in the area of health and student information. One of the provincial governments wanted to outsource some of the government health plan data management to a U.S. company (the lowest bidder). It was effectively stopped because they could not guarantee that someone would not use a U.S. court to order the data management company to disclose the health information of a Canadian citizen in the US. As a result, the data had to remain in Canada, and the US company did not get the contract.

I'm curious, which province was that?

I'm pretty sure BC's MSP is managed by ... EDS? Despite the very concerns you raised, they outsourced it to a US company, much to my chagrin.

Please correct me if I'm wrong, but I think BC does outsource to US for medical records. The bastards. Thanks again, Gordon Campbell.

Re:Canada Too..

I work for a division of the government of Ontario. I do not know if it is government wide, but our division will NOT allow any data to reside in the US, OR be transit the US. We would love to use collaborative tools such as google docs, but it is out of the question.

Re:Canada Too..

[codegen]

One of the controversies I was thinking about is the BC case (although not the one that lost the contract). My understanding about the BC MSP case is that EDS had to create a Canadian Subsidiery (EDS Advanced Solutions) which had to have Canadian Citizens as directors and set up a data center in Canada. Futhermore, the province had specific powers of attorney. So while EDS US would end up with the money from the contract (a different issue), the data would remain in Canada under Canadian legal jurisdiction.

No kidding

[Sycraft-fu]

This seems like trying to spin a general fact of life in terms of "the cloud" (a term I dislike) in to an anti-US thing.

Your data is subject to being looked at by whoever controls it. Doesn't matter if they are supposed to, they can. The idea that the US government is the only one that looks in on data in their country is quite silly.

Also to expand on your bribery note, this could well be done by the government too in any country, but not as direct bribery: Find an employee who is patriotic to your country at the service, recruit them, and use them to get access to data you want. Could be quite easy since even a very moral person might agree. The government sells them on the idea that they need this access for legit work and it is just much quicker and cheaper to do it back channel rather than via the courts.

Basically if you give up your data to someone else, you have to understand that means others can have access. That is going to include their government. Don't think this is unique to the US. Other countries participate in the intelligence game just as much. Look up some information on the British Security Service or Secret Intelligence Service, or the French DGSE.

Private Cloud Computing

Host it anywhere, http://cloudi.org

Dropbox encrypted?

[codegen]

This has come up in the past. While dropbox uses S3 for the base encryption layer, the staff at dropbox have access to the encryption keys. In fact because of a FTC complaint dropbox had to change the terms of use as explained on their blog To clearly indicate that while the contents are encrypted, that dropbox staff still have access to be able to comply with the US justice system. And the US can order the dropbox to disclose the data without telling you that the data was disclosed. At least if the courts come after the data in the server sitting under some IT guy's desk, you will know about it.

Re:Dropbox encrypted?

[Baldrake]

Well, fair enough. But my point was really that the odds of having your data requested by the US government is vanishingly small compared to the risk of having that "server under the desk" hacked or physically stolen.

Re:Dropbox encrypted?

But having our customers' data misused by the US Government is a significantly higher risk than having our £35m data centre stolen, along with its DR sister and the separate offsite backup.

We're serious about data. We have to be, we have legal, regulatory and moral obligations to protect it because.. it's not ours. It belongs to our customers.

They don't want foreign governments prying into their affairs so why would we permit that?

(posted anonymously because I work for a major UK clearing bank and shouldn't be telling you shit like this)

Re:Dropbox encrypted?

We're serious about data. We have to be, we have legal, regulatory and moral obligations to protect it because.. it's not ours. It belongs to our customers.

You're not alone. Financial services here. Not in the UK, but somewhere in the EU. There is no way that we would store any of our customers' data on services hosted in the US.

It's unlikely enough that we would store any such data outside the country in which we mainly reside, due to data retention rubbish interfering with international data transfers, but the US is completely out of the question.

Encryption helps, but is not enough, in certain cases, which I won't go into any further...

But...

"But competitors overseas are using it as a way to discourage foreign countries from signing on with U.S. cloud computing providers like Google and Microsoft: Put your data on a U.S.-based cloud, they warn, and you may just put it in the hands of the U.S. government.'"" All while lying through their teeth when they say they won't provide legally requested info...much less that their own governments are doing the same as the US.

FUD

ECHELON and Room 641A

[Mojo66]

Anyone remember ECHELON. The US spying on its own allies is not an issue since 9/11 and the Patriot Act. The Patriot Act and 9/11 just gave them a new ground to put political pressure on the EU (see also airline passenger data and SWIFT) after the cold war was over. Is there anything similar to Room 641A in the EU? The US demanding all kinds of intelligence data from the EU would maybe Ok provided that the deal would be mutual. But does the EU get US airline passenger data? No. Does the EU get US bank transfer information? No.

So why should we trust the US?

Re:ECHELON and Room 641A

Don't forget the fingerprinting all visitors to the USA.

Re:ECHELON and Room 641A

Anyone remember ECHELON

Remember? I write this as Anon because these days as a US serf I'm scared. Let me tell you ECHELON is still alive and everywhere in data centers across the US. A few years back Yahoo moved into a DC we were in in Atlanta. They came in and installed to rows of racks full of boxes and then one night while I was there two men with guns came in and installed two black cabinets. I later asked the Senior Engineer of the DC about this and he said "Oh thats the NSA and BTW watch out for the new camera that's not ours."

Later I asked him if our data was going through them and he looked at the floor and said "I can't say." I said "Thanks for being honest." We moved out the next month. When the owner of the DC asked on moving day why were we leaving I pointed to the two cabinets and said "Right there is the reason." He said "well they pay us a lot of money to be there." I asked "What is the cost of freedom?"

Months later when I was at a VERY large DC in Atlanta I was walking around it with one of the owners of the DC and we got to talking about these "boxes" He said "Oh there everywhere we've got about twenty in just this building." He took me into a room and pointed to two black cabinets and asked "Do they look like this?" Yep there was there cousins. I asked him too "What is the cost of freedom?"

Room 641A was just the beginning. Talk about Cloud computing. Thats what ECHELON is a massive distributed computing system covering the whole network in the US.

So if I was consulting a company in a country other than the US would I tell them to keep their data here? HELL NO! I'd do my best to route around the US with data traffic.

Thank you Europe for sending all your thugs and thieves to the "New World" so they could gang up and get powerful.
Native America
Fighting Terrorism Since 1492

You F41l It

and Suggesting They learn from our or make loud noises OS. No3 BSDI is ink splashes across DOG THAT IT IS. IT

Pun Intended

[colsandurz45]

Pun Intended

And just how is the USofA different than China?

[Paracelcus]

Comparing the cloud security in both countries is like comparing... ummm?

Let's see, in China they shoot you in the back of the head, in America the poison you. In America the rich go Scott free, in China they still might shoot you. In China there really isn't any due process, in America the Gov can suspend it at will. In China there are low paying jobs, in America there are no jobs.

Spock said, "Only Nixon could go to China".

True

[mseeger]

Hi,

First: I am working in sales and i am using this pitch (rarely, but it happens). I have no bad conscience about it, since i am doing the customer a service. If he uses a U.S. based cloud for personal data of German citizens without their consent, he would be breaking German law.

The main problem with the Patriot Act is, that it allows seizures of data without court approval and is therefor violating due process as it is defined here (e.g. those infamous "national security letters"). While the U.S. company cannot be sued for following such lettters, the German customer who stored data there can be held liable.

The problem for U.S. companies is even bigger: Even if they store the data in a subsidary (e.g. Ireland), the Patriot Act forces them to hand over data from those data centers as well.

So as long as the Patriot Act is at it is, i will use it as sales argument.

Yours, Martin

P.S. I am simplifying legal issues here, didn't want to post 10 pages of text. The gist is correct.

Re:We're MUCH safer then the other guy... TRUST us

Salesman: Huh? Well, of course not! At least, not without a court order, anyway... or a law which says we have to for some reason.
Customer: Ah... So how is that different from the US based companies again?

Your government won't leak it to your American competitor. That is the danger of using US servers.

US Citizen here - data overseas!

I'm a US citizen and I go out of my way to store my cloud data overseas where privacy protections are the default, not the exception.

The US government is so busy protecting us from everything, wasting money, that it is scary. I say this has a former government worker. They've gone too far and will continue to as long as "never again" means anything to current voters. Sadly, we have 50 yrs more of that.

This is so 2001

When the Patriot act came out, our local government was getting criticized for outsourcing the medical services billing to Accenture in the US due to the Patriot Act. I don't recall the end result, but the medical services plan system is getting shredded and everyone has to re-enroll come next year with new cards due to widespread fraud.

But yeah, basically Patriot Act is a disincentive for foreign governments and businesses from outsourcing TO THE US. But it also works the other way around, it prevents foreign states from accepting outsourcing from the US since their residents employee data would be stored IN THE US.

For the most part it is overblown, but just to prove a point, would you dare to outsource the US Government's computer system to China? Would China outsource to the US? A bold NO. Likewise, substitute Russia, this is why I stopped using Livejournal (other than becoming rather crappy.)

The Patriot act is a cockup just like the upcoming Protect-IP/SOPA

Re:We're MUCH safer then the other guy... TRUST us

Customer: So how is that different from the US based companies again?
Salesman: US companies don't need court order thanks to the "Patriot Act", a law created after 9-11 paranoia.
Customer: I understand.

Latency

[jmactacular]

Is it safe to assume that if you're an EU company, the majority of your end users/clients/customers are in the EU? Wouldn't you want to host your data in the closest cloud geographically to reduce latency anyway? Perhaps the issue only comes into play when you're considering multiple geographic CDN's around the world, and one of these regions is the US.

For some the Patriot Act itself may be a breach

I have had clients decide against cloud solution providers solely on the Patriot Act basis, as having their data subject to the Patriot Act in turn breaches their own regulatory legislation and data control requirements.

Re:Attn: Soulskill Post Is In the Wrong Department

[rust627]

Should be the "All Your Data Are Belong To the USA" department.

Fixed it for you

How Should a Patriot Act

The Patriot Act comes down from our Commander and Chief.
In that there is NO ambiguity.

Every CEO, CFO, Board Members and ALL Management persons at ALL USA companies are subject to Presidental Executive Order.

That PO gives the President latitude to 1) Render 2) torture 3) kill ALL at the discression of the Commander and Chief the President of the United States of America PERIOD.

Therefore, the children of the CEO, CFO, Member of Board and EVERY Manager in ALL USA Companies can ENJOY the same SERVICE from the President of the United States of America.

How Wonderful.

How Beautiful.

How Clever.

AH .. a Clever man is worth far more than a successful man. That's our Obama by George.

put it in the hands of the U.S. government.

[anonieuweling]

"Put your data on a U.S.-based cloud, they warn, and you may just put it in the hands of the U.S. government."

As if there's any other way?
They (USA) even need our credit card transactions without sharing theirs.
(yes I am in the EU zone)
So in this war on terror that they cannot win what will be the next thing they need after our data?
The battlefield USA thing?
Do away with the constitution?
So it's truth w.r.t. the data.

DERP

LOL The head of the church is usually a sovereign person, ie. they claim to be above the law, and control a state because they are God's representative on Earth.

LOL That's pretty fundamentalist, and does not exist in the U.S.

Re:We're MUCH safer then the other guy... TRUST us

[Warwick+Allison]

When constructing a strawman, consider that you may just not know what you're talking about.

Put down the flag and think of it as juristiction

[dbIII]

The idea that the US government is the only one that looks in on data in their country is quite silly.

With respect that is missing the point entirely. If your local government does something objectionable with your supposedly confidential data there are legal mechanisms to do something about it. If a foreign power does something with the data there isn't much you can do about it.
In the case of the PATRIOT act it's an explicit warning that anything hosted in the USA is fair game and there is nothing you can do about it. While that's not much different to the possiblities anywhere offshore it's still a very clear warning.

Yes, this stuff does get on other people's servers

[dbIII]

Let's just say I'm astonished the accountants in my company have survived to adulthood. The service that does the payroll offsite even spoofs a company email address so of course payment notification gets blocked by any properly set up spam filter.
There's a lot of stuff in the "cloud" that shouldn't be there would never have got there without slick salesfolk completely bypassing anyone with a clue.

Re:We're MUCH safer then the other guy... TRUST us

[zarmanto]

... you may just not know what you're talking about.

(Sigh...) It never fails: there's always at least one person in the crowd who simply has no sense of humor at all.

Do more research

I am sorry, but you actually have a lot wrong in here.

Most of the independent mega churches are actually far left of the fundamentalist denominations. They are derided by many fundies who consider them to have a "watered down for mass consumption, commie Christianity". lol (ironic as the early "church" was very commie)

Re:Do more research

[Grishnakh]

That's not what I've seen, especially the ones that have a Starbucks inside.