[arlort]

> non-EU

The problem isn't non EU services, it's the US CLOUD act

Other countries have legal systems which are considered as offering equivalent protection:

> The European Commission has so far recognised Andorra, Argentina, Canada (commercial organisations), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Republic of Korea, Switzerland , the United Kingdom under the GDPR and the LED, and Uruguay as providing adequate protection.

And for many more countries standard contractual clauses would probably be enough

[Ekaros]

Uruguay? I wouldn't exactly call them for known being a tech nation...

So why does USA fail at this? Or are they just too big and diverse for that sort of stuff? And you can't really expect such nation to succeed... In anything...

[arlort]

> I wouldn't exactly call them for known being a tech nation

And?

> So why does USA fail at this?

Because, and I'm going from memory here, should be Schrems I or Schrems II if you want to dig deeper, in the view of the ECJ (which invalidated a similar recognition for the US) the US doesn't provide a satisfactory way for EU citizens to contest their data being accessed by US government agencies

[simsla]

It's not a tech issue, but a govt issue.

Look up the cloud act. It essentially makes it impossible for any US company to truly comply with GDPR.