Data localization requirements have been gaining traction around the world. While they are traditionally introduced as part of data privacy and cybersecurity bills, they can now also be found in bills addressing other pressing political and social issues, including disinformation and COVID-19. While restrictions on data storage and cross-border transfers are frequently introduced under the guise of protecting user privacy, they raise significant human rights risks as they put user data under the legal purview of governments. I recently partnered with my friends at Freedom on the Net to discuss the grave human rights risks posed by data localization requirements. In the report, we also present some initial ideas for a human rights impact assessment that could be used to systematically assess these risks. You can find the report here.