. https://www.commvault.com/blogs/2017/july/gdpr-and-cloud-services
blog article
The first thing you need to consider is your cloud suppliers’ stance on privacy and GDPR, which will vary by their location.  Data sovereignty is an important issue today, and will become more important beginning May of 2018. Data is subject to the law where it resides, as demonstrated by a recent spat between the U.S. government and Microsoft. However, whether you’re located in the European Union (EU) or elsewhere - and if you hold and process data that applies to EU residents - you will have to comply with the GDPR. This is regardless of where you store your data. As stated in the regulations, that means personal data stored outside the EU must be offered ‘adequate’ protections in comparison with EU law. NIGEL TOZER READ MORE