European and Asian Digital Sovereignty Debates Around Foreign Technology Dependence
Policymakers and industry leaders are intensifying calls to reduce dependence on foreign technology infrastructure, framing digital sovereignty as a strategic issue tied to democratic resilience, data protection, and long-term economic security. In Europe, speakers at a Brussels summit argued that reliance on major U.S. cloud, browser, and platform providers creates governance and concentration risks, and they pushed for stronger alignment across AI, semiconductor, and cybersecurity policy, along with greater use of open source, interoperability, and transparent standards.
A parallel debate is unfolding in Indonesia, where officials and telecom leaders warned of "digital colonization" while trying to expand domestic AI capacity without simply shifting dependence from Western vendors to Chinese platforms. Indonesian efforts emphasize building local capabilities in AI, semiconductors, and talent, even as foreign open-source offerings are presented as cheaper and more customizable options. The material is not fluff because it addresses substantive policy and security implications of technology dependence, but only the Europe and Indonesia items are relevant to the same broad sovereignty theme; the telecom AI roadmap and MWC product-announcement roundup are separate topics.
How this story unfolded
10 events from the most recent confirmed update back to the earliest known activity.
Poll finds Europeans favor homegrown tech over US and Chinese firms
A Politico European Pulse poll found strong distrust among Europeans toward US and Chinese technology companies handling personal data, while European firms were viewed more favorably. The results highlighted public support for digital sovereignty themes already shaping European policy debates.
Open Rights Group urges UK to pursue digital sovereignty
The Open Rights Group published a report warning that the UK is overly dependent on a small number of US technology companies and should prioritize digital sovereignty through open-source adoption, interoperability, data portability, and stronger in-house technical capability. Politicians from Labour, the Liberal Democrats, and the Green Party backed the recommendations, framing the issue as both a national security and economic concern.
Schleswig-Holstein replaces Microsoft software with open-source alternatives
Germany's state of Schleswig-Holstein migrated about 30,000 government users across ministries, tax authorities, justice, police, and the premier's office from Microsoft software to tools including Open-Xchange, LibreOffice, Nextcloud, and Element as part of its digital sovereignty strategy. Officials said the move reduced dependence on US tech providers and saved roughly €15 million in license costs despite operational disruptions and a €9 million one-time transition cost.
Estonia establishes Luxembourg data embassy for government continuity
Estonia set up a 'data embassy' in Luxembourg to store critical government data under diplomatic protections, aiming to preserve continuity of government if its territory or domestic systems are compromised. The arrangement became a prominent model of portable digital sovereignty for small states facing cyber, military, or disaster risks.
Seven Dutch cloud firms launch Open Cloud Alliantie
Seven Dutch IT and cloud companies formed the Open Cloud Alliantie to build a domestic alternative to dominant US cloud providers and make it easier for customers to move data and workloads between participating firms. The alliance said it would use shared technical standards, jointly pursue larger contracts, and keep customer data under Dutch control even if a member is acquired by a non-European company.
France reports €84 million in 2025 public cloud orders
France’s Dinum said the state placed €84 million in orders through its interministerial public cloud procurement vehicle in 2025, up 62% year over year across 847 projects. The government said 70% of spending went to European providers and highlighted growing adoption of SecNumCloud-qualified and other trusted cloud offerings as part of its sovereignty push.
Indonesia begins developing national AI security and ethics rules
The Indonesian government started establishing national AI regulations covering roadmap, security, and ethics. The effort was highlighted in part by its response to controversy surrounding generative AI tools such as X’s Grok chatbot.
Indonesia advances domestic AI ecosystem to limit foreign dependence
Indonesia moved to grow its domestic AI ecosystem through semiconductor planning, chip design collaboration, and AI talent development while trying to avoid overreliance on foreign providers. The strategy included diversifying partnerships beyond major US and Chinese firms to reduce data sovereignty, cybersecurity, and national security risks.
European Council proposes rules to reduce dependence on US tech firms
The European Council proposed new regulations aimed at reducing reliance on US technology providers and simplifying the EU’s digital legislative framework, particularly around AI. The move was framed as part of a broader effort to strengthen European technological independence amid geopolitical uncertainty.
European leaders push digital sovereignty at Brussels summit
At Wire’s European Digital Sovereignty Summit in Brussels, policymakers, industry leaders, and digital experts called for reducing Europe’s dependence on major US technology firms. They emphasized open source, interoperability, transparent standards, and alignment across AI, semiconductor, and cybersecurity policy to strengthen resilience and data sovereignty.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
13 references tracked. Mallory keeps watching after this page renders.
The push for digital sovereignty: What CISOs need to know | TechTarget
techtarget.com
Open sourceUK told its Big Tech habit is now a national security risk • The Register
go.theregister.com
Open sourcePoll: Europeans distrust US and Chinese data handling, favoring homegrown tech | brief | SC Media
scworld.com
Open sourceDigital rights organizers warn UK is too reliant on big tech, urge digital sovereignty | IT Pro
itpro.com
Open sourceInvestissements cloud : l’État promet plus de souveraineté avec 8 ...
zdnet.fr
Open sourceOpen source is booming in Europe as enterprises look to strengthen digital autonomy | IT Pro
itpro.com
Open source‘Reducing reliance on foreign tech infrastructure is key’ to European tech success - and its long-term survival | IT Pro
itpro.com
Open sourceIndonesia Pushes AI Ecosystem Growth While Guarding Against ‘Digital Colonization’ | HackerNoon
hackernoon.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Policy Debate Over Technology and Data Sovereignty in AI and Critical Platforms
Governments are increasingly treating **technology and data sovereignty** as a national security risk factor, weighing dependence on foreign-controlled platforms and supply chains against operational capability. Switzerland ended its use of **Palantir** not over performance, but over residual sovereignty concerns tied to proprietary opacity, foreign legal jurisdiction, and remote update/control mechanisms that could enable remote access, unintended exposure, or service disruption during geopolitical crises. In parallel, U.S. policy discussions are framing “**sovereign AI**” as a strategic export and partnership model, even as partners pursue sovereignty specifically to reduce reliance on the United States amid concerns about shifting rules, access restrictions, and leverage. Separately, reporting on potential U.S. moves to ease certain China-tech restrictions (including around Chinese telecoms and consumer networking products) underscores how quickly policy can change and how those shifts can reshape risk postures for critical infrastructure and technology procurement decisions.
Jun 1, 2026
EU Push for Digital Sovereignty and Reduced Reliance on US Technology
European policymakers and industry voices are intensifying a **digital sovereignty** push aimed at reducing reliance on non-EU technology and services, framing the issue as both a strategic and practical dependency problem. A G DATA commentary argues that “sovereignty” should be approached pragmatically—expanding options and reducing single-vendor or single-region dependencies through incremental changes rather than unrealistic “all-or-nothing” shifts (e.g., total withdrawal from online services or immediate replacement of global hardware supply chains). In the defense domain, reporting indicates the EU is planning a secure **military data-sharing** capability designed to avoid **U.S.-made technology**, driven in part by concerns about external control or “**kill switch**” risk and broader geopolitical uncertainty. The proposed *Defense Artificial Intelligence Data Space*—described as a sovereign military cloud to improve interoperability and data flows for AI-enabled and automated battlefield systems—is reportedly targeted to be operational by **2030**, aligning with earlier European Commission planning and the EU’s wider effort to build alternatives to U.S. hyperscalers for sensitive workloads.
Apr 10, 2026
European Push for Digital Sovereignty in Cloud Infrastructure
European governments and organizations are intensifying efforts to achieve digital sovereignty in cloud infrastructure, driven by geopolitical uncertainties and concerns over reliance on American hyperscalers such as Microsoft, Google, and Amazon Web Services. With U.S. policy shifts and potential transatlantic tensions, European leaders are prioritizing the development of domestic alternatives and strategies to ensure control over sensitive data and critical workloads. Despite these ambitions, local cloud providers currently hold only a small share of the market, and experts suggest that a new European hyperscaler is unlikely to emerge soon, with existing players like SAP and Deutsche Telekom each controlling only about 2% of the market. In response to these sovereignty concerns, cloud providers are expanding offerings tailored to regulatory and data residency requirements. Amazon Web Services, for example, has introduced Dedicated Local Zones to provide customers with greater control over data location, security, and compliance, supporting sensitive workloads for public sector and regulated industries. These initiatives reflect a broader trend of cloud service adaptation to meet the evolving needs of European customers seeking to balance operational flexibility with strict sovereignty and compliance mandates.
May 12, 2026