Slowly, and then all at once is how a ‘splinternet’ happens. I’m seeing more and more cases of the EU standing up to so-called Big Tech companies like Google over data processing agreements.
In this case, it’s Denmark’s data protection agency, but I should imagine other European countries might follow suit. There’ll be an uproar, though, because data security and sovereignty aside, Google absolutely nailed it with that operating system.
Denmark is effectively banning Google’s services in schools, after officials in the municipality of Helsingør were last year ordered to carry out a risk assessment around the processing of personal data by Google.
In a verdict published last week, Denmark’s data protection agency, Datatilsynet, revealed that data processing involving students using Google’s cloud-based Workspace software suite — which includes Gmail, Google Docs, Calendar and Google Drive — “does not meet the requirements” of the European Union’s GDPR data privacy regulations.
Specifically, the authority found that the data processor agreement — or Google’s terms and conditions — seemingly allow for data to be transferred to other countries for the purpose of providing support, even though the data is ordinarily stored in one of Google’s EU data centers.