This is an old revision of the document!
Originally, before the ubiquitious use of neworks and internet, hardware abstraction, virtualization, the explosion in cloud computing, and globalizaton of tech compaines, data protection was relatively easy which a large portion of the Data Protection accomplished through Physical Security. Thess original concepts of Data Protection were greatly expanded to cover Securability. Although, this was an improvement in protecting data from the perspective of the corporation, there was little protection for the end-user (i.e., consumer) from the corporations. Figure 1 represents the widespread nature of Geographic Jurisiction Data Governance. Fortunately, most of the tecg areas such as Cloud Computing, Artifical Inteligence and Big Data have already made adaptations for Geographic Jurisiction Data Governance expecially since it has been mandated by Internation and national Governance and Regulation such as General Data Protection Regulation (GDPR), Data Protection Act 2018, and California Consumer Privacy Act (CCPA).
Unfortunately, most distributed computing platforms (i.e., DIDOs) have done little to address Geographic Jurisiction Data Governance even while the amount of governance and regulation has increased beome relatively mainstream internationally. Some of the Countries that have enacted data protection laws are https://incountry.com/country-compliance/, https://incountry.com/blog/data-residency-laws-by-country-overview/:
There are three main categories of Geographic Jurisiction Data Governance: dido:public:ra:1.2_views:3_taxonomic:4_data_tax:06_protect#data_residency, Data Sovereignty and Data Localization. Usually, these concpets are applied strickly to data storage with an increase burden to store the data in the jurisdiction where the data is created. Basically, it is represents the Data-at-Rest data state, see: 2.3.4.2 State of Data Taxonomy.
: Data Sovereignty differs from Data Residency in that not only is the data stored in a designated location, but is also subject to the laws of the country in which it is physically stored. This difference is crucial, as data subjects (any person whose personal data is being collected, held or processed) will have different privacy and security protections according to where the data centers housing their data physically sit.