Open
Description
Need to walk users through the implications of picking a Pod, app, or WebID over another.
Useful to mention: PCI DSS, ISO 27000, SOC2, FedRAMP, NIST are all relevant standards. and then there's validation of encryption for stored, processed and transmitted layers
Think about geographical implications for various nationalities
https://cdt.org/insight/microsoft-ireland-case-can-a-us-warrant-compel-a-us-provider-to-disclose-data-stored-abroad/