Get 40% Off
🤯 This Tech Portfolio is up 29% YTD! Join Now to Get April’s Top PicksGet The Picks – Just 99 USD

Exclusive-U.S. Chamber of Commerce warns against draft EU plan to exclude non-EU cloud vendors

Published 01/12/2022, 07:23
Updated 01/12/2022, 21:05
© Reuters. FILE PHOTO: A sign is pictured outside a Google office near the company's headquarters in Mountain View, California, U.S., May 8, 2019.  REUTERS/Paresh Dave/File Photo

© Reuters. FILE PHOTO: A sign is pictured outside a Google office near the company's headquarters in Mountain View, California, U.S., May 8, 2019. REUTERS/Paresh Dave/File Photo

By Foo Yun Chee

BRUSSELS (Reuters) -The U.S. Chamber of Commerce and 12 other groups on Thursday warned the European Union against adopting rules that could exclude Amazon (NASDAQ:AMZN), Alphabet (NASDAQ:GOOGL) unit Google, Microsoft (NASDAQ:MSFT) and other non-EU cloud services providers from the European market.

The Chamber, the National Foreign Trade Council, the Japan Association of New Economy, techUK, the Latin American Internet Association, the Computer & Communications Industry Association and others set out their concerns in a joint industry statement seen by Reuters.

The statement was sent to relevant Commissioners at the European Commission, national governments, EU cybersecurity agency ENISA, and EU lawmakers early Thursday.

At issue is a draft proposal from ENISA for an EU certification scheme vouching for the cybersecurity of cloud services that would determine how governments and companies in the bloc select a vendor for their business.

ENISA's draft dated May seen by Reuters sets out requirements for a certified cloud service provider (CSP (LON:CSPC)) aimed at preventing and limiting interference from non-EU states with the operation of certified cloud services.

"The CSP's registered head office and global headquarters shall be established in a member state of the EU," the document said.

Cloud services would have to be operated and maintained from the EU, and all cloud service customer data stored and processed in the EU, with the bloc's laws taking precedence over non-EU laws including countries with extra-territorial measures.

The EU should refrain from adopting requirements of a political, rather than technical, nature, which would exclude legitimate cloud suppliers and would not enhance effective cybersecurity controls, the Chamber and the other groups said.

"These EUCS (EU draft) requirements are seemingly designed to ensure that non-EU suppliers cannot access the EU market on an equal footing, thereby preventing European industries and governments from fully benefiting from the offerings of these global suppliers," they said.

"If other countries were to pursue similar policies, European cloud providers could see their own opportunities in non-EU markets dwindle," they said.

The groups also questioned whether the scheme complies with the World Trade Organization's General Agreement on Trade in Services and the EU's Government Procurement Agreement commitments.

ENISA, which declined to comment on the draft document, said the voluntary scheme sets out three levels.

"The highest level is intended to only be applicable to a small set of use cases requiring the highest level of security (e.g. highly sensitive government and highly critical infrastructure applications), for which some level of independence from non-EU laws will have to be ensured. Not all cloud services," a spokesperson said.

"After consulting with the European Commission, ENISA is proposing two certification levels for assurance level 'high', in order to cater for the different needs identified in the European industry and member states," she said.

ENISA sent an updated proposal to the Commission for consultation in September, which could lead to changes before a final text is adopted.

© Reuters. FILE PHOTO: A sign is pictured outside a Google office near the company's headquarters in Mountain View, California, U.S., May 8, 2019.  REUTERS/Paresh Dave/File Photo

"The discussions are ongoing to have a balanced approach and no decision has been taken yet. The scheme should be fully in line with EU law, as well as with the EU's international commitments, including on trade," a spokesperson for the EU executive said.

The size of the global government cloud market is expected to reach $71.2 billion by 2027 from $27.6 billion in 2021, according to market research firm Imarc Group. Cloud computing has become a major driver of growth for Big Tech in recent years.

Latest comments

Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2024 - Fusion Media Limited. All Rights Reserved.