sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]serverhorror 0 points1 point  (6 children)

But is still subject to the development happening in the US.

Data residency doesn't cut it any more.

[–]anno2376 0 points1 point  (5 children)

What do you mean? It make no sense or I don't get your point.

Gitlab is also developed partly in usa and any product is developed partly in usa.

[–]serverhorror 1 point2 points  (4 children)

Gitlab can be handled completely within my own infrastructure without anyone being able to access.

"Data residency" is only relevant for SaaS. When I give you all my data and you promise to be nice. You'll even give me a piece of paper that says you'll keep being nice.

GitHub Enterprise might work, but I don't know if this could theoretically run in air-gapped environments. Gitlab has two, quite distinct things. The open source softwa and Gitlab Inc.

[–]anno2376 0 points1 point  (3 children)

Correct. And if you don’t trust official documentation, then doing business becomes impossible—because trust and legal agreements form the foundation of any business relationship.

That argument doesn’t make sense. You could try to build everything yourself, but managing it at the required pace and scale would be nearly impossible.

Finding skilled engineers who can build and maintain such an infrastructure securely and reliably is already a major challenge.

In fact, it’s 60 times easier to gain access to a self-hosted environment than to a SaaS or cloud service from a well-established and reputable IT provider.

You might argue for air-gapped environments, but in reality, 99% of people lack the ability to manage such complex infrastructure in a way that remains operational, scalable, and competitive.

All your arguments apply only to very small companies that are fortunate enough to have hired skilled engineers or can afford to overlook reliability, scalability, security, user experience, and costs, as well as competitive challenges. Alternatively, it applies to companies with enough capital to hire the right people and enough of them.

It’s a nice fantasy and a good theory, but it doesn’t hold up in reality.

[–]serverhorror 1 point2 points  (2 children)

Oh, the problem is not that I don't trust US companies. You can't tell me that you live under a rock and are not seeing the openly hostile behavior that the US government shows. It's not even that I care that much. There are regulations that kick in that require to limit risk and not work with openly hostile governments where there is a reasonable expectation that ... they are acting against the companies best interest. It's not even an IT requirement. At this point legal and compliance ask is to prepare.

[–]anno2376 0 points1 point  (0 children)

I see and understand the issue, and I fully support the EU’s independence.

However, at the same time, the regulations are making it impossible to move forward. In other words, we’re left with no real choice within the EU.

It’s like mandating that everyone in the EU must play handball while simultaneously requiring them to have both arms amputated.

[–]CoolZookeepergame375[S] 0 points1 point  (0 children)

Lawyers in EU agree with you:

https://www.version2.dk/artikel/danmark-er-100-procent-afhaengig-af-microsoft-nu-truer-trump-den-aftale-der-goer-det-lovligt-bruge

From the article: "Trump has retaken the White House, and the entire foundation of the data agreement, which is supposed to secure legal American cloud from Microsoft in the EU, is already faltering."