Good to see this exchange thanks. meet.coop has a related issue which we haven’t yet figured how to handle. I’ll try to remember to post here, when we do.
We have members in Europe, Usa, Canada, etc. We have servers in Germany and also Canada (under Quebec Law #25 jurisdiction, which is pretty strong, equivalent to GDPR). However, web users in Europe, especially public sector/municipal orgs, are getting increasingly fidgety about strict GDPR coverage, and servers being literally inside Europe. So we need a set of protocols that cover the Canadian server (and the Canadian hosting coop, which does sysadmin on BOTH servers) to satisfy European members’ anxieties.
Of course we’re compliant, through our routine security and privacy practices (just like MayFirst is - the privacy regime here is tight). But it needs protocols to say so!
meet.coop forum thread on this topic.
https://forum.meet.coop/t/evolution-2-a-commons-hour-on-data-privacy-and-regulatory-regimes/1354/21