Policy Debate Over Technology and Data Sovereignty in AI and Critical Platforms
Governments are increasingly treating technology and data sovereignty as a national security risk factor, weighing dependence on foreign-controlled platforms and supply chains against operational capability. Switzerland ended its use of Palantir not over performance, but over residual sovereignty concerns tied to proprietary opacity, foreign legal jurisdiction, and remote update/control mechanisms that could enable remote access, unintended exposure, or service disruption during geopolitical crises.
In parallel, U.S. policy discussions are framing “sovereign AI” as a strategic export and partnership model, even as partners pursue sovereignty specifically to reduce reliance on the United States amid concerns about shifting rules, access restrictions, and leverage. Separately, reporting on potential U.S. moves to ease certain China-tech restrictions (including around Chinese telecoms and consumer networking products) underscores how quickly policy can change and how those shifts can reshape risk postures for critical infrastructure and technology procurement decisions.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
27 events from the most recent confirmed update back to the earliest known activity.
France's DGSI ends Palantir contract and shifts to ChapsVision
France decided to terminate early the DGSI's renewed three-year contract with Palantir and move to ChapsVision, citing digital sovereignty and dependence concerns around critical U.S. technology. The transition was framed as both a security measure for sensitive data and an industrial-policy move to support a European provider.
Reported U.S. order leads Anthropic to disable AI models globally
A June 12, 2026 directive reportedly from the U.S. Commerce Department ordered Anthropic to block foreign nationals from accessing its Fable 5 and Mythos 5 models on national-security grounds. The reference says Anthropic then disabled both models worldwide, highlighting how government action could abruptly cut off access to frontier AI capabilities delivered via API.
China drafts national AI data-center grid plan using mostly domestic chips
China is reportedly drafting a five-year plan to spend about 2 trillion yuan on a nationwide AI data-center network tied together as a unified computing grid by 2028. The blueprint reportedly targets 80% domestic sourcing for AI chips and would rely heavily on Chinese operators such as China Mobile and China Telecom, reflecting a major state-backed AI sovereignty push.
Booz Allen reports security risks in Chinese AI coding models
In May 2026, Booz Allen Hamilton ran more than 2,800 trials comparing four Chinese code-generation models with a U.S. model and found that three of the Chinese models produced more vulnerable code when prompts indicated a U.S. government user. The report also found higher refusal rates on politically sensitive topics and argued that Chinese and other untrusted AI models should be default-blocked from U.S. government and critical infrastructure environments.
UK launches £1.1 billion AI Hardware Plan
The UK government announced a £1.1 billion AI Hardware Plan to strengthen domestic AI infrastructure and support British semiconductor companies. The package includes £750 million for a national AI supercomputer expected by 2030, along with funding for next-generation AI chips, innovation programs, skills development, and investment in UK-based AI hardware firms.
U.S. presses NATO allies to remove Huawei and ZTE from 5G networks
A new report said the United States is again urging NATO countries to replace Huawei and ZTE equipment in their 5G networks, citing privacy and data-security risks. The effort reportedly includes encouraging allies to use defense-related funding to rip out Chinese-made telecom components, with Germany and Spain highlighted as major remaining users.
CNRS bans non-European consumer chatbots for staff use
France's CNRS barred staff from using non-European consumer chatbots such as ChatGPT and Gemini and directed them toward Mistral AI's Emmy instead. The move reflected research-sector concerns about data privacy, academic freedom, and dependence on foreign AI providers.
European Commission unveils technological sovereignty package
The European Commission unveiled a technological sovereignty package aimed at reducing dependence on foreign technology providers across AI, cloud, semiconductors, open source, and energy digitalization. The package includes Chips Act 2.0, the Cloud and AI Development Act, a new Open Source Strategy, and an EU-wide sovereignty framework with trust tiers for cloud and AI providers in public-sector and sensitive use cases.
European Commission prepares sovereignty legislation for cloud, AI and chips
A Commission initiative described by AFP said Brussels was preparing legislative measures to reduce EU dependence on U.S. cloud providers and Chinese semiconductor suppliers. The planned package would cover cloud, AI, semiconductors and open source, including sovereignty risk assessments, chip-supply crisis powers, joint semiconductor procurement and stronger open-source use in public administration.
Cianum publishes report urging public-private digital sovereignty coalition
France's Conseil de l’intelligence artificielle et du numérique (Cianum) published a report warning that dependence on a small number of foreign technology providers creates economic, security, surveillance, political, and governance risks. It recommended a coalition-based sovereignty model involving the public sector, private sector, and digital commons, including open standards, a strategic fund, and stronger European coordination.
ASEAN-China AI Industry Innovation Center inaugurated in Beijing
ASEAN Secretary-General Kao Kim Hourn inaugurated the ASEAN-China Artificial Intelligence Industry Innovation Center in Beijing on 2026-05-24 as part of the 2026–2030 China-ASEAN Comprehensive Strategic Partnership. The initiative was presented as a major regional AI cooperation effort with implications for adoption, governance, and security across Southeast Asia.
Germany's BfV selects ChapsVision over Palantir for data analysis
Germany's domestic intelligence agency, the Bundesamt für Verfassungsschutz (BfV), chose French analytics vendor ChapsVision instead of U.S. firm Palantir for a data analysis platform. The decision was framed as a move toward European technological autonomy and reduced dependence on foreign providers.
Vietnam launches national cloud plan to replace foreign government cloud services
Vietnam announced plans in Decision 808/QD-TTg to build a domestic national cloud platform for government workloads, aiming to reduce reliance on foreign-owned cloud services and strengthen data sovereignty and cybersecurity. The strategy also calls for broader domestic cyber capability development, including firewalls, anti-malware, SIEM, AI-enabled SOC platforms, UEBA, and quantum-resistant encryption.
Norway joins US-led Pax Silica AI supply-chain initiative
Norway acceded to the US-led Pax Silica initiative, aligning itself with a trusted technology and infrastructure bloc focused on AI supply chains, critical minerals, semiconductors, energy, and digital infrastructure. The move was framed as a strategic sovereignty and geopolitical choice with implications for cross-border cyber and infrastructure dependencies.
UK announces AI hardware strategy tied to sovereignty goals
UK technology secretary Liz Kendall said the UK will pursue a new AI hardware strategy focused on chips and semiconductors, warning that concentration of global AI compute creates economic and national-security risks. She framed the effort as part of a broader push for AI sovereignty, alongside the UK's £500 million Sovereign AI scheme and international technology partnerships.
European Commission awards sovereign cloud contracts under new SEAL framework
The European Commission awarded four cloud-related contracts to European providers under a tender launched in October, aiming to strengthen the digital sovereignty of EU entities through strategic procurement. It also introduced a Cloud Sovereignty Framework with eight measurable objectives and a SEAL rating system, requiring at least SEAL-2 eligibility for bidders.
Microsoft announces $10 billion AI and cybersecurity investment in Japan
Microsoft said it will invest 1.6 trillion yen ($10 billion) in Japan from 2026 to 2029 to expand AI infrastructure, increase in-country computing capacity, and deepen cybersecurity cooperation with the Japanese government. The plan includes support for keeping sensitive data within Japan on Azure, training 1 million engineers and developers by 2030, and expanding intelligence sharing on cyber threats and crime prevention.
France orders ministries to plan shift from Windows to Linux
France's Interministerial Digital Directorate (DINUM) announced it would migrate its own workstations from Windows to Linux and directed all government ministries to prepare plans by autumn 2026 to reduce dependence on extra-European digital suppliers. The order spans operating systems, collaboration tools, security software, AI platforms, databases, cloud and virtualization infrastructure, and telecom equipment as part of France's broader digital sovereignty strategy.
Mistral urges EU-controlled AI infrastructure for defense and critical workloads
Mistral CEO Arthur Mensch warned that Europe's reliance on foreign AI providers creates strategic risks, especially for defense, and said critical capabilities could be disrupted by political disputes. The company published policy proposals calling on the EU to prioritize European-controlled AI infrastructure and use public procurement to keep sensitive workloads on European platforms.
Western governments coordinate to secure 6G infrastructure early
A new report said Western governments were moving to lock down 6G standards and infrastructure before the technology is widely deployed, reflecting sovereignty and security concerns over future telecom dependencies. The effort marked an expansion of digital-sovereignty policy into next-generation mobile networks and supply-chain control.
U.S. tells diplomats to lobby against foreign data-sovereignty laws
A report said the U.S. instructed diplomats to push back on foreign data-sovereignty laws that could disadvantage American technology providers. The move marked a direct U.S. policy response to the growing international trend toward sovereign control over data, cloud, and digital infrastructure.
Palantir initiates legal action over reporting on Swiss decision
An update reported that Palantir began legal action against media outlets that covered Switzerland's decision and the related sovereignty concerns. The move was portrayed as an effort to limit the case from becoming a precedent for other governments reassessing similar contracts.
Switzerland ends Palantir contract over sovereignty concerns
Switzerland decided to discontinue use of Palantir, judging residual data-sovereignty and foreign-jurisdiction risks unacceptable even with local hosting and contractual controls. The decision was framed as a risk-management and national-control issue rather than a failure of the platform's technical performance.
Gartner forecasts sharp rise in European sovereign cloud spending
Gartner projected that sovereign cloud infrastructure spending in Europe would rise from $6.9 billion in 2025 to $12.6 billion in 2026 and $23.1 billion by 2027, driven by geopolitical tensions and digital-sovereignty priorities. The firm also estimated that about 20% of European workloads would shift from global hyperscalers to local cloud providers as governments and regulated sectors seek greater local control.
EU pushes to secure defence data without U.S. technology
Euractiv reported that the EU was seeking to ensure defence data is secured using non-U.S. technology, reflecting growing concern over sovereignty, foreign jurisdiction, and dependence on American providers for sensitive military-related systems. The development marked an EU-level move to align defence data protection with broader digital sovereignty goals.
France orders government shift from Teams and Zoom to sovereign Visio platform
France announced it would replace Microsoft Teams and Zoom across all government departments with the domestically developed videoconferencing platform Visio by 2027. Officials framed the move as part of France's digital sovereignty strategy to improve the security and confidentiality of public-sector communications and reduce dependence on U.S. software vendors.
Airbus moves critical applications to a sovereign European cloud
Airbus announced plans to migrate critical applications to a sovereign European cloud, reflecting concerns about control over sensitive data and dependence on non-European providers. The move marked a major private-sector adoption of digital-sovereignty principles for critical workloads.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
42 references tracked. Mallory keeps watching after this page renders.
Souveraineté numérique : la DGSI rompt avec Palantir et bascule c ...
zdnet.fr
Open sourceWhy Sovereign AI Is No Longer Optional - ZENDATA Cybersecurity
zendata.security
Open sourceThe Case Against the EU’s Tech Sovereignty Package | Blogs | Jun 11, 2026 | ITIF
itif.org
Open sourceThe China Chip Strategy That Is Backfiring on America | TechPolicy.Press
techpolicy.press
Open sourceAirbus to migrate critical apps to a sovereign Euro cloud
theregister.com
Open sourceCIOs wrestle with Europe's new digital sovereignty approach | IT Pro
itpro.com
Open sourceSovereign AI in a Hybrid World: National Strategies and Policy Responses | Lawfare
lawfaremedia.org
Open sourceDario Amodei - On DeepSeek and Export Controls
darioamodei.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
European and Asian Digital Sovereignty Debates Around Foreign Technology Dependence
Policymakers and industry leaders are intensifying calls to reduce dependence on foreign technology infrastructure, framing **digital sovereignty** as a strategic issue tied to democratic resilience, data protection, and long-term economic security. In Europe, speakers at a Brussels summit argued that reliance on major U.S. cloud, browser, and platform providers creates governance and concentration risks, and they pushed for stronger alignment across AI, semiconductor, and cybersecurity policy, along with greater use of **open source**, interoperability, and transparent standards. A parallel debate is unfolding in Indonesia, where officials and telecom leaders warned of **"digital colonization"** while trying to expand domestic AI capacity without simply shifting dependence from Western vendors to Chinese platforms. Indonesian efforts emphasize building local capabilities in AI, semiconductors, and talent, even as foreign open-source offerings are presented as cheaper and more customizable options. The material is **not fluff** because it addresses substantive policy and security implications of technology dependence, but only the Europe and Indonesia items are relevant to the same broad sovereignty theme; the telecom AI roadmap and MWC product-announcement roundup are separate topics.
Apr 23, 2026
Geopolitical Implications of AI Sovereignty and National Control
Trisha Ray, associate director at the Atlantic Council's GeoTech Center, emphasized the growing importance of AI sovereignty as nations seek to control their own artificial intelligence infrastructure, data, and talent. The push for sovereign AI is driven by concerns over national power, trust, and resilience, as countries aim to reduce dependence on foreign technology providers and assert greater control over their digital futures. Ray highlighted that achieving true AI sovereignty is challenging due to the lack of diverse, high-quality datasets and the limited digitization of many languages, which hampers the development of inclusive and effective AI models. The discussion also explored the broader geopolitical landscape, outlining four possible futures for national AI ecosystems and the foundational elements required for AI sovereignty, such as data, computing power, and skilled personnel. The interview underscored that AI sovereignty is no longer a theoretical concept but a pressing issue at the intersection of geopolitics, technology, and national security, with significant implications for cyberwarfare, fraud management, and the global balance of power.
Mar 21, 2026
EU Push for Digital Sovereignty and Reduced Reliance on US Technology
European policymakers and industry voices are intensifying a **digital sovereignty** push aimed at reducing reliance on non-EU technology and services, framing the issue as both a strategic and practical dependency problem. A G DATA commentary argues that “sovereignty” should be approached pragmatically—expanding options and reducing single-vendor or single-region dependencies through incremental changes rather than unrealistic “all-or-nothing” shifts (e.g., total withdrawal from online services or immediate replacement of global hardware supply chains). In the defense domain, reporting indicates the EU is planning a secure **military data-sharing** capability designed to avoid **U.S.-made technology**, driven in part by concerns about external control or “**kill switch**” risk and broader geopolitical uncertainty. The proposed *Defense Artificial Intelligence Data Space*—described as a sovereign military cloud to improve interoperability and data flows for AI-enabled and automated battlefield systems—is reportedly targeted to be operational by **2030**, aligning with earlier European Commission planning and the EU’s wider effort to build alternatives to U.S. hyperscalers for sensitive workloads.
Apr 10, 2026