With the rising popularity of cloud computing and Software as a Service (SaaS) solutions, data sovereignty issues have become a greater focus and risk for Chief regulatory Officers (CRO) and General Counsels (GC). Data sovereignty is a country-specific requirement that data is subject to the laws of the country in which it is collected or processed and must remain within its borders. Many countries have had these laws for decades, and new privacy laws such as the GDPR are only making them more prominent. For example, countries like Russia, China, Germany, France, Indonesia, and Vietnam (to name a few) require that their citizen’s data must be stored on physical servers within the country’s borders. They argue that it’s in the government’s and their citizen’s interest to protect personal information against any misuse, especially outside of the country’s jurisdiction.