Multi-nationals have to exist in the Venn diagram of laws.
Which is problematic in a bunch of scenarios:
- US foreign policy (note: I don't really want to stick up for a bunch of the countries/regions on that list).
- Chinese (and other countries) with censored internet.
- GDPR reaching far further than the EU borders.
- Badly written cryptography laws[0]
I don't really see a solution to this problem though. It's more of a problem when there is no transparency or ability to provide feedback and move democratic mechanisms toward "correct" solutions.
In the case of Okta/Auth0, however they've segmented their business (I use their EU region) they're still at the end of the day a US company with US board and directors. They can make a "service region" that respects EU laws because they don't contradict US laws (mostly), but there is nothing in EU laws mandating offering services to these regions. ¯\_(ツ)_/¯
Which is problematic in a bunch of scenarios:
I don't really see a solution to this problem though. It's more of a problem when there is no transparency or ability to provide feedback and move democratic mechanisms toward "correct" solutions.In the case of Okta/Auth0, however they've segmented their business (I use their EU region) they're still at the end of the day a US company with US board and directors. They can make a "service region" that respects EU laws because they don't contradict US laws (mostly), but there is nothing in EU laws mandating offering services to these regions. ¯\_(ツ)_/¯
[0]: https://www.eff.org/deeplinks/2018/09/australian-government-...