🚀 Orbital Data Centers: Can Laws Keep Up With Tech?
5 May 2026
SpaceX and other players are floating the idea of data centers in orbit - promising abundant solar power, reduced cooling environmental and economic costs, and a futuristic edge for AI workloads. But before we get swept up in the vision, we need to ask: can users truly trust their data when it’s stored beyond Earth’s borders?
🌍 Data Sovereignty Meets Outer Space
Data sovereignty laws such as South Africa’s POPIA, Europe’s GDPR, and similar frameworks around the world hinge on geography. They require sensitive information to remain within a country’s borders or in jurisdictions with equivalent protections. Orbit, however, is not a jurisdiction in the legal sense. The Outer Space Treaty of 1967 governs rockets and satellites, but it says nothing about data sovereignty. If your HR records or payroll data are processed in orbit, which regulator enforces compliance - South Africa’s Information Regulator, the EU’s Data Protection Board, or no one at all?
⚖️ The Compliance Puzzle
Data sovereignty laws such as South Africa’s POPIA, Europe’s GDPR, and similar frameworks around the world hinge on geography. They require sensitive information to remain within a country’s borders or in jurisdictions with equivalent protections. Orbit, however, is not a jurisdiction in the legal sense. The Outer Space Treaty of 1967 governs rockets and satellites, but it says nothing about data sovereignty. If your HR records or payroll data are processed in orbit, which regulator enforces compliance - South Africa’s Information Regulator, the EU’s Data Protection Board, or no one at all?
⚖️ The Compliance Puzzle
Companies may attempt to route orbital compute through compliant ground stations, but this raises thorny questions. If the data is processed in orbit, does localisation law still apply? POPIA requires “adequate protection” in foreign territories, yet space is not a territory. Without clear definitions, auditability collapses. Who signs off on compliance when the servers are circling Earth at thousands of kilometers per hour?
đź”’ Trust Gap
Trust in cloud providers today rests on accountability. Regulators can hold them responsible, and businesses can rely on audit trails. In orbit, accountability becomes murky. Until laws catch up, orbital data centers risk being seen as black boxes - powerful, but untrustworthy for sensitive workloads.
đź“ś Law vs. Tech Pace
The pace of technology is sprinting ahead, while legislation moves slowly. This mismatch creates uncertainty, which undermines trust. If orbital compute becomes reality, lawmakers will need to rethink sovereignty, jurisdiction, and compliance in ways that were unimaginable when POPIA and GDPR were drafted.
đź“ś Law vs. Tech Pace
The pace of technology is sprinting ahead, while legislation moves slowly. This mismatch creates uncertainty, which undermines trust. If orbital compute becomes reality, lawmakers will need to rethink sovereignty, jurisdiction, and compliance in ways that were unimaginable when POPIA and GDPR were drafted.
If data is stored in orbit, does it belong to Earth’s laws - or to no one’s? And if no one’s, how can users trust it? Or has trust in business already outpaced trust in government?
