Data Residency Is Not Sovereignty
Your data might be stored in Australia — but that doesn't mean it's protected by Australian law alone. Understand the critical difference between where data lives and who can legally compel access to it.
Sovereignty Explainer
Click each concept to explore the differences. These three terms are often confused — but getting them wrong in a Defence context can have serious consequences.
Data Residency
Data is stored and/or processed in a specific geographic location
Data Sovereignty
Data is subject ONLY to the laws of the country where it resides
Legal Jurisdiction
The legal authority under which a company operates and can be compelled to produce data
Side-by-Side Comparison
| Scenario | Residency | Sovereignty | Jurisdiction Risk |
|---|
Jurisdiction Risk Mapper
Select a provider, data type, and use case to see a jurisdiction risk assessment. Or click a pre-loaded scenario below.
Key Insight
Data residency is a necessary condition but not a sufficient one. For truly sensitive workloads, the ownership structure of the provider matters as much as the location of the data centre.