Which is one of the reasons why Atlassians discontinuation of their server offering is so problematic. There's a number of smaller businesses which could use Atlassian Cloud, but between HIPAA, Schrems II and GDPR that's currently not possible, and the datacenter license is simply too expensive.
Exactly. Our customers do need to authenticate to read anything in our Confluence installation. Ideally there's nothing critical, just stuff which is considered private.
Legally many of our clients require that their data, all of it, secret or not, reside within the EU.
Currently cloud is not so hot, due to Schrems II. During the last six months we migrate a number of customers on-prem, and only one is building out their stuff in AWS.
You're theoretically more in control of the data, which may be a legal requirement in certain jurisdictions and/or industries.