🇪🇺 EU weighs restricting use of U.S. cloud platforms to process sensitive government data, sources tell CNBC

｢ Proposals would not prohibit overseas companies’ cloud platforms from government contracts entirely, but limit their use in processing sensitive data at public sector organizations, depending on the level of sensitivity, they added. The officials said that talks are ongoing and yet to be finalized ｣
https://www.cnbc.com/2026/05/07/eu-commission-cloud-sensitive-data.html

#TechSovereignty #cloudSovereignty

The European Commission is considering rules that would restrict EU member governments from using US cloud providers to process sensitive data including financial, judicial and health records. The restrictions would form part of the Tech Sovereignty Package scheduled for May 27, which includes the Cloud and AI Development Act (CADA) and Chips Act 2.0. Only public-sector use is in scope.

https://www.builtineu.eu/news/eu-commission-us-cloud-restrictions-tech-sovereignty-package

#cloudsovereignty #CADA #europeantech #EU #Europe #EUTech

Europe's quiet revolt against US cloud

2025년부터 유럽 여러 국가들이 미국 클라우드 서비스, 특히 Microsoft 365 사용을 중단하는 움직임을 보이고 있다. 이는 2018년 제정된 미국 CLOUD Act에 따라 미국 정부가 해외에 저장된 데이터도 요구할 수 있다는 법적 위험과 주권 침해 우려 때문이다. 유럽은 오픈소스 기반의 자체 호스팅 SaaS 솔루션과 상업적 지원 모델을 통해 데이터 주권을 확보하려는 시도를 확대 중이며, 이는 보안과 사용성 사이의 균형을 맞추려는 노력이다. 다만, 이 전환은 기술적·조직적 도전과 비용이 수반되며, 유럽 내 법적·기술적 인프라 개선과 지원 체계 강화가 필수적이다.

https://willhackett.com/europe-revolt-against-us-cloud/

#cloudsovereignty #uscloudact #opensource #europeancloud #dataprotection

On 25 Feb 2026, the UAE announced the world's first sovereign financial cloud. The CEO: "Finance runs on digital infrastructure; hence it must be sovereign."

Four days later, drones hit AWS ME-CENTRAL-1. Two AZs down simultaneously. 109 services disrupted. 37 still dark two months later.
They understood the problem. The implementation gap killed them anyway.
https://haunted.lighthouse.co.im/articles/finance-runs-on-digital-infrastructure/
#CloudSovereignty #DigitalSovereignty #AWS #CloudResilience #InfoSec #Infrastructure #DataSovereignty #FinTech

English – The Conversation | Cloud tech outages: how the EU plans to bolster its digital infrastructure by Christine Abdalla Mikhaeil, Assistant professor in information systems, IÉSEG School of Management

AI generated summary, Read the full article for complete information.

The recent global failures of Amazon Web Services in October 2025 and CrowdStrike’s update in July 2024 revealed how the world’s digital infrastructure—now dominated by a few hyperscalers such as AWS, Microsoft and Google—remains surprisingly fragile, with a single error rippling across banks, hospitals, airlines and public services despite marketed redundancy and backup mechanisms. This concentration creates a structural vulnerability amplified by opaque interdependencies, making it difficult for users to map where their data and services reside and who is responsible when outages occur. In response, the EU is moving beyond the abstract notion of “digital sovereignty” toward concrete resilience measures: the Digital Operational Resilience Act (DORA) now allows regulators to designate critical third‑party ICT providers for oversight and stress‑testing; the Cyber Resilience Act (CRA) mandates “resilience by design” for all networked products; the NIS2 Directive expands security obligations to a wide range of essential sectors; and a new €180‑million Cloud Sovereignty Framework, awarded in 2026, sets strict legal, technical and environmental criteria for cloud services procured by EU institutions, promoting multi‑cloud architectures, portability and reduced lock‑in to bolster Europe’s digital resilience.

Read more: https://theconversation.com/cloud-tech-outages-how-the-eu-plans-to-bolster-its-digital-infrastructure-280928

#AWS #CrowdStrike #EuropeanUnion #DORA #CloudSovereignty

AI generated summary, Read the full article for complete information.

If US legal access remains a factor, it obviously complicates the concept of 'sovereignty.'
Digital autonomy hinges on more than just jurisdiction; it's about interoperability and mitigating vendor lock-in across borders. This matters because true data residency needs open standards to back it up.

https://go.theregister.com/feed/www.theregister.com/2026/04/20/europe_picks_4_sovereign_cloud/

#CloudSovereignty #DataResidency #GDPR

AWS, Azure, and Google Cloud hold 70% of the European cloud market. All European cloud providers combined hold 15%.

SAP and Deutsche Telekom are Europe's largest cloud players. They hold 2% each.

We outsourced our digital infrastructure to three American companies and called it modernization.

Source: https://www.cnbc.com/2026/02/13/four-charts-europes-reliance-us-digital-infrastructure.html

#CloudSovereignty #EUCloud #DigitalSovereignty #EUAlternatives