[theplumber]

I believe the way around it would be to create an "full" EU subsidiary that stores the data within EU and cannot take directives from the U.S parent <- US gov. To be honest I'm really surprised that the stock market had no reaction to the recent Digital Markets Act and GDPR. Currently most of the U.S companies are in illegality. They need to restructure their business significantly. That being said I think EU is right. Why would we want our data shared with the U.S government?

[iggldiggl]

I'm not sure that's really possible, is it? If your legal control over your subsidiary is sufficiently tight that your subsidiary cannot turn rogue on you (and if it doesn't turn rogue on you despite not having sufficiently close legal ties, you might effectively be forming an illegal cartel, wouldn't you?), it's presumably also sufficiently tight for the US government to act through those ties.

[theplumber]

It's possible because there is money on the table.