Data Sovereignty: Don't Let Data Privacy Regulations Choke Your Business.

Complying with data privacy regulations is an issue impacting all global companies.

What is data sovereignty?

Data sovereignty is the concept that information that has been converted and stored in binary digital form is subject to the laws of the country in which it is located. With data theft and breaches dramatically on the rise, national governments around the globe are strengthening laws to protect citizen data, preserve national security and, in some cases, protect local business interests. Sweeping new data privacy laws, like the upcoming General Data Protection Regulation (GDPR), significantly restrict how certain types of information may be stored and used by organizations – and are being enforced by increasingly stiff fines and penalties. With various countries imposing so many different requirements, organizations face a regulatory patchwork of inconsistent, unclear and often contradictory demands.

The implications for multinational companies are substantial: threats of regulatory action, disruptions to established business processes and requirements to tighten controls for handling and processing information that crosses national boundaries. Change is already here. For example, the overturning of the Safe Harbor agreement, governing how data was moved between EU countries and the US, compelled many companies to reexamine their own legal and policy frameworks for protecting personally identifiable data (PII). 

To address the challenges emerging from new and pending data privacy regulations, business and technology leaders need to work collectively with their compliance, legal and technology teams to understand the impact regulations have on their business.

Learn more


“The cost of regulatory compliance will be substantial, but the cost of non-compliance will be higher.”

—Ovum, “Data privacy laws: Cutting the red tape”

Ovum Report - Data privacy laws: Cutting the red tape

New research shows businesses are vulnerable to future data privacy regulations.

Read the Ovum report >

Forrester: Does the cloud put data sovereignty compliance out of reach?

Take a deeper look at the complex issue of data sovereignty in the Forrester study, "Data Sovereignty and SaaS."

Download the Forrester study >


From our blog: 
GDPR Dominates Infosecurity UK

GDPR Dominates Infosecurity UK Infosecurity Europe is a huge event, attracting hundreds of vendors to a melting pot of acronyms in the hope that they won’t just be talking to other vendors for three days.

Read the blog post >

From our blog: 
GDPR: Five Steps Towards Compliance

Safe Harbor is Dead. Long Live Safe Harbor…? The Global Data Protection Regulation (GDPR) is set to come into force in May of 2018 and will impact any organization handling the personal data of EU citizens. So, whether you’re based in Australia, Europe or post-Brexit Britain – if you handle EU citizen data, you have about just a year to comply.

Read the blog post >

Intralinks’ Approach

Compliance Assured. Potential Unlocked.

Global enterprises need technology partners who understand how regulatory changes impact businesses. They need partners with experience and expertise to help address the compliance challenge. 

At Intralinks, we have more than 20 years of experience working in highly regulated industries to provide secure, complaint and effective solutions for content collaboration and file sharing. Working closely with our customers, we have already taken steps to address the challenges emerging from new and pending data privacy regulations:

  • Chief Privacy Officer – Intralinks was one of the first cloud collaboration companies to appoint a global privacy officer, with overall responsibility for ensuring our policies and governance processes meet the highest regulatory standards.
  • Process and governance – Intralinks is committed to providing our customers with the vendor commitments they need to comply with global regulations. For example, Intralinks began implementing EU Model Clauses in our agreements well before the ruling undermining the legal status of Safe Harbor protections. We have also announced our commitment to Binding Corporate Rules, which is another way data can be transferred internationally and in a compliant manner. 
  • Global data centers – Intralinks has invested in providing local data centers in jurisdictions where controlling data location is critical. We have data centers in the US and UK, and, with our strategic partner HP, in Germany and Australia.
  • Customer Managed Encryption Keys (CMK) – Intralinks was one of the first companies to separate physical information storage from the point where the encryption resides. With CMK, businesses can benefit from the cloud and distributed data, while still placing ultimate control over their high-risk information in a regulated jurisdiction.
  • Information Rights Management (IRM) – Intralinks advanced information management (IRM) provides lifetime control of protected documents, regardless of where files are stored. The greatest risk to information comes when it is in use, and Intralinks’ integrated IRM technology enables businesses to maintain full control of information wherever it is shared – even after downloading.

Helpful Resources

Forrester Consulting Study:
"Data Sovereignty and SaaS"

Data Sovereignty and SaaS Conducting business on a cloud-based platform while remaining compliant with emerging global regulations.

Read the Forrester Study > 



Webinar Recording:
Data Sovereignty and the Cloud

Read the webinar executive summary

Intralinks White Paper: “Does the cloud put data sovereignty compliance out of reach?”

Intralinks White Paper: Does the cloud put data sovereignty compliance out of reach? A look at the complex issue of data sovereignty as enterprises begin to embrace SaaS technologies.

Read the white paper >



Webinar Recording:
The Top Five Things to Know About Secure File Sharing

Read the companion whitepaper from Osterman Research