Ok, so there should be reciprocal European law: any company operating in the EU must provide access to the EU authorities (all countries) any data managed by it and stored in any country in the world (so including US data stored in the US), otherwise it would get big fines or interdiction to operate in the EU.
(PS: I don't want that, it should work like extradition but with real reciprocity)
