EU Launches Tech Sovereignty Plan to Accelerate Domestic Supply Chains in Semiconductors, AI, and Cloud Computing
Taylor Wilson
The European Commission on Wednesday unveiled a tech sovereignty package requiring government-critical data to sit on EU-controlled cloud services and rebooting its chip subsidy program — AWS, Azure and Google Cloud hold over 70% of the EU cloud market, and the new rules take direct aim at that dominance.
What does this package actually do?
The centrepiece is CADA — the Cloud and AI Development Act. It aims to triple European data-centre capacity within five to seven years, building local infrastructure for AI and online services.
It also reboots the 2023 Chips Act into Chips Act 2.0, letting the Commission invest directly in large cross-border semiconductor projects instead of routing funds through individual member states.
This means → the EU is moving beyond rule-setting and preparing to spend its own money building capacity, from cloud all the way down to chips.
Why target cloud services?
A European Parliament–commissioned study found that AWS, Azure and Google Cloud together hold over 70% of the EU cloud market.
The concern centres on the US CLOUD Act, which lets American law enforcement compel US tech firms to hand over server data — even when that data is stored overseas.
In plain terms = sensitive EU government data sitting on American servers is, in theory, accessible to US authorities — a real risk when geopolitical tensions are high.
How would the "sovereignty risk assessment" work?
CADA mandates a four-tier sovereignty ranking for cloud providers, scoring their cloud services, supply chains, data handling and physical infrastructure on whether each is under EU control.
Government-critical data must be stored on EU-owned cloud services. This means → foreign providers that fail the sovereignty rating would be shut out of government contracts.
Some US firms are already adapting: Google and France's Thales SA set up S3NS, recently selected as one of four providers for EU institutional cloud; Microsoft and Amazon have each launched "sovereign cloud" offerings in Europe.
Why reboot the Chips Act?
The original Chips Act launched after pandemic-era semiconductor shortages, targeting a doubling of Europe's chip market share by 2030.
EU auditors said last year that the target is unlikely to be met.
Chips Act 2.0 changes the funding model: the Commission estimates €120 billion in combined public and private investment is needed by 2035, and the new plan lets Brussels allocate funds directly. In plain terms = the shift is from "each country subsidises on its own" to "Brussels coordinates the chequebook."
How far is this from becoming law?
The package was originally due in March but was delayed repeatedly by member-state opposition and criticism from the Commission's own oversight board.
After publication the draft still faces multiple rounds of negotiation between national governments and the European Parliament — a process that could take months.
This reflects a clear directional commitment to tech sovereignty, but execution speed depends on consensus among 27 member states — historically Brussels' slowest gear.
Content is for reference only, not financial advice.