I would also strongly urge DreamHost to get a Safe Harbor certification.
We’re working under French data privacy law and it would be HIGHLY advantageous for us to be able to affirm — to our users and French data privacy authorities — that our data host is Safe Harbor certified.
It is a self-certification process and while I’m not an attorney, it really doesn’t look that involved, particularly if you don’t include your own employee data among those covered by the certification. And I’m not sure this would impact your users in any way that is not positive. What “added inconvenience” do you see? Nothing in the requirements suggest any burden whatsoever on your customers. It’s all good for us!
Requirements here: http://export.gov/safeharbor/eu/eg_main_018495.asp
Please consider it at the earliest possible date.