Computerworld has a nice summary of why FBI data compliance requirements are often incompatible with cloud providers:
One of the more challenging requirements requires cloud service providers to identify all system, database, security and network administrators who have access to criminal justice information, [Stephen Fischer Jr., a spokesman for the FBI’s CJIS division] said.
Similarly, cloud vendors will likely find it difficult to require fingerprint criminal background checks on all administrators with access to the criminal justice information. Fischer said.
Analysts have previously noted such rules would be particularly difficult for cloud vendors like Google that maintain staffed data centers outside the U.S.