EU Digital Sovereignty Divide Shapes New Tech Package

The European Commission is expected to publish its Tech Sovereignty Package, presenting one of its most direct policy efforts to reduce EU reliance on non-European cloud, AI and semiconductor infrastructure. The package is expected to include the Cloud and AI Development Act, an update to the Chips Act, and a formal EU-level definition of “digital sovereignty”, a term long used in EU policy but not yet clearly fixed in law.

The main legal and policy dispute concerns how far EU digital sovereignty should go. One approach favors stronger European preference, especially for sensitive data hosted by major US cloud providers. Another favors interoperability, resilience and managed dependency rather than exclusion. EU digital commissioner Henna Virkkunen has framed technological sovereignty as capacity-building, not isolation, which appears to reflect a softer Commission compromise.

On current drafts, the strongest cloud restrictions would apply to sensitive public-sector data in areas such as healthcare, finance and judicial systems. Private-sector use of US cloud providers would remain largely untouched for now. This reflects the political and practical limits facing the EU, given the deep reliance of public authorities, banks and companies on Microsoft, Google and other US-built cloud services.

The package should therefore be read less as an immediate break with US technology and more as a legal and procurement signal. It would redirect future sensitive-data deployments, steer public spending, and support European cloud, AI and chip capacity over time. The key legal question is whether these measures can create credible European alternatives faster than earlier industrial initiatives such as Gaia-X, batteries and telecoms policy managed to do.