Talks
Speakers
Events
Topics
Search
Sign in
Search
Home
Talks
Speakers
Events
Topics
Leaderboard
Use
Analytics
Sign in
search talks for
⏎
Suggest modification to this talk
Title
Description
RailsConf 2018: Continuous Deployments and Data Sovereignty: A Case Study by Mike Calhoun In any production rails application’s simplest form, there is one version of the app deployed to a single host or cloud provider of your choice, but what if there were laws and regulations in place that required your application to be replicated and maintained within the geographical boundaries of other countries. This is a requirement of countries that have data sovereignty laws and a regular hurdle to overcome when dealing with sensitive data such as protected health information. This talk provides a case study of how we devised an automatic deployment strategy to deploy to multiple countries.
Date
Summarized using AI?
If this talk's summary was generated by AI, please check this box. A "Summarized using AI" badge will be displayed in the summary tab to indicate that the summary was generated using AI.
Show "Summarized using AI" badge on summary page
Summary
Markdown supported
In this presentation titled "Continuous Deployments and Data Sovereignty: A Case Study," Mike Calhoun addresses the challenges of deploying a Rails application within the constraints of data sovereignty laws across different countries. The discussion begins with the landscape of data regulations, particularly focusing on how these laws affect the deployment of applications dealing with sensitive data, like health information. Calhoun identifies two critical frameworks: the Health Insurance Portability and Accountability Act (HIPAA) and data sovereignty laws, emphasizing the necessity of maintaining compliance while scaling globally. Key points discussed in the video include: - **Introduction to Data Sovereignty**: Calhoun explains data sovereignty, which mandates that data collected is subject to the laws of the country where it is stored. This requirement complicates cloud computing solutions, where data often crosses international boundaries. - **Continuous Deployment vs. Continuous Delivery**: The speaker clarifies these concepts, noting that continuous deployment wants to automate the entire deployment process across various geographic regions, while continuous delivery focuses on keeping code ready for deployment. - **Case Study of a Healthcare Startup**: Calhoun shares the journey of a healthcare startup that initially designed its backend to comply with HIPAA, only to later discover that it needed to accommodate various international data regulations. This highlighted the importance of preparing for global clients early in application development. - **Deployment Challenges**: The speaker discusses different deployment strategies, including the problematic approach of creating separate production branches for different regions and presents a more manageable solution of regional deployments. The latter allows for a single code base with separate translation files, reducing logistical complications. - **Utilization of AWS for Regional Deployments**: The case study demonstrates how using AWS allowed the startup to deploy their application effectively across different regions, ensuring compliance with local data laws while maintaining a streamlined code management process. - **Lessons Learned**: Calhoun emphasizes the steep learning curve associated with deploying across multiple regions. He stresses the need for robust legal guidance and the importance of being aware of international data laws, the potential costs associated with global data hosting, and the necessity of ensuring user data security. Ultimately, the talk serves as a comprehensive guide for developers and technology leaders on how to navigate the complexities of continuous deployments while adhering to stringent data laws in a global landscape. The core conclusion revolves around the fact that understanding and planning for these regulations from the outset can significantly ease the deployment process and avoid costly missteps.
Suggest modifications
Cancel
