How Digital Sovereignty Can Help Prevent Geopolitical Bullying

/0 Comments/in , , , /by

Introduction

The 2026 geopolitical landscape is defined by techno-nationalism, digital fragmentation, and the systematic use of technology as a tool of state power

The intersection of technology and geopolitics has transformed digital infrastructure from a purely technical consideration into a strategic asset that determines national autonomy and resilience. As global tensions intensify and major powers increasingly weaponize technological dependencies, digital sovereignty has emerged as a critical defense mechanism against geopolitical coercion. The 2026 geopolitical landscape is defined by techno-nationalism, digital fragmentation, and the systematic use of technology as a tool of state power. Understanding how digital sovereignty functions as a bulwark against such pressures requires examining both the mechanisms of technological coercion and the frameworks through which nations and enterprises can reclaim control over their digital destinies.

The Architecture of Geopolitical Bullying Through Technology

Geopolitical bullying manifests through technology in increasingly sophisticated forms that exploit the structural dependencies created by globalized digital infrastructure. The United States CLOUD Act exemplifies extraterritorial overreach, enabling American authorities to demand data from US-based service providers regardless of where that information is physically stored. This legislation effectively attempts to extend American legal jurisdiction across international boundaries, compelling organizations worldwide to surrender data that may be subject to competing legal obligations under frameworks such as the General Data Protection Regulation. The conflict between the CLOUD Act and European privacy protections came to a head in the Schrems II decision, where the Court of Justice of the European Union invalidated the Privacy Shield agreement, determining that US surveillance laws do not provide adequate protection for European data.Technology sanctions represent another potent instrument of coercion, as demonstrated by the comprehensive export controls imposed on Iran and the coordinated campaign against Huawei’s 5G infrastructure. The United States has systematically leveraged its control over critical semiconductor supply chains to restrict Iran’s access to dual-use technologies, forcing the establishment of elaborate networks designed to circumvent these restrictions. The Huawei case reveals how infrastructure dependencies become political leverage, with Washington pressuring Five Eyes alliance members and European partners to ban Chinese telecommunications equipment under threat of severed intelligence sharing. These measures forced nations to make binary choices between technological partnerships and geopolitical alignment, demonstrating how supply chain control translates into diplomatic pressure.

Platform bans and content control mechanisms further illustrate the coercive potential of digital infrastructure

Platform bans and content control mechanisms further illustrate the coercive potential of digital infrastructure. The TikTok controversy in the United States highlights concerns about algorithmic influence and data collection by platforms subject to foreign government pressure. The national security rationale invoked to justify potential bans rests on China’s 2017 National Intelligence Law, which compels Chinese companies to assist in intelligence gathering if requested. This creates a scenario where popular communications platforms become potential vectors for foreign influence operations, with user data and algorithmic content amplification serving as mechanisms through which authoritarian governments might shape discourse in democratic societies. The debate surrounding TikTok illustrates the fundamental tension between free expression rights and national security imperatives in the digital age, with platforms increasingly caught between competing jurisdictional claims.Data localization mandates imposed by authoritarian regimes represent the inverse form of coercion, compelling foreign companies to store and process data within borders where they become subject to local surveillance and control. China’s Cybersecurity Law requires critical information infrastructure operators to store personal information and important data within mainland China, with broad and ambiguous definitions leaving room for expansive government intervention. Russia has similarly weaponized data residency requirements, using sovereignty rhetoric to pressure social media platforms and technology companies into compliance with content removal demands and local storage mandates. These measures force organizations to choose between market access and data security, with the implicit threat that non-compliance will result in exclusion from economically significant jurisdictions.

Data localization mandates imposed by authoritarian regimes represent the inverse form of coercion.

Supply chain attacks such as the SolarWinds incident demonstrate how trusted software vendors can become unwitting conduits for sophisticated espionage campaigns. The 2020 breach, allegedly orchestrated by Russian intelligence, compromised approximately 18,000 customers worldwide by inserting malicious code into legitimate software updates. This attack highlighted the vulnerability of IT supply chains, where a single compromise can cascade across thousands of organizations, including government agencies and critical infrastructure operators. The SolarWinds case underscores that digital sovereignty requires not merely control over data location but comprehensive assurance over the entire technology stack, from hardware manufacturing through software development to operational deployment.

The SolarWinds case underscores that digital sovereignty requires not merely control over data location but comprehensive assurance over the entire technology stack, from hardware manufacturing through software development to operational deployment

Vulnerability Through Systemic Dependency

The concentration of digital infrastructure under the control of a handful of American and Chinese technology giants creates structural vulnerabilities that enable geopolitical coercion.

Approximately 92 percent of western data resides on US-owned cloud infrastructure, creating a dependency relationship that exposes European and allied data to extraterritorial legal claims. Amazon Web Services, Microsoft Azure, and Google Cloud collectively control around 70 percent of the European cloud market, meaning that critical government services, healthcare systems, financial infrastructure, and commercial operations depend on providers subject to American legal jurisdiction. This concentration means that disputes between the United States and European nations over regulatory frameworks such as the Digital Markets Act can escalate into threats against critical infrastructure access.

Approximately 92 percent of western data resides on US-owned cloud infrastructure, creating a dependency relationship that exposes European and allied data to extraterritorial legal claims.

The semiconductor supply chain represents another critical chokepoint where technological dependencies translate into geopolitical leverage. Europe currently accounts for only 10 percent of global semiconductor production, with advanced chip manufacturing concentrated in Taiwan, South Korea, and the United States. This dependency became starkly apparent when export controls targeting Huawei and Chinese semiconductor companies demonstrated how access to advanced chips could be weaponized for strategic purposes. The Netherlands’ ASML holds a monopoly on extreme ultraviolet lithography machines essential for manufacturing cutting-edge semiconductors, making it a focal point of geopolitical competition as the United States pressures Amsterdam to restrict exports to China while Beijing warns of economic consequences.Artificial intelligence infrastructure dependencies compound these vulnerabilities, as training large language models and deploying sophisticated AI systems require access to advanced computing resources, specialized chips, and extensive datasets. American companies control the most capable AI model architectures and the computational infrastructure necessary to develop and deploy them at scale. This creates a scenario where European enterprises and governments risk becoming dependent on AI systems whose training data, architectural decisions, and operational parameters reflect non-European priorities and potentially incompatible values. The opaque nature of proprietary AI systems further exacerbates sovereignty concerns, as organizations cannot audit how these models make decisions affecting citizens’ rights, access to services, or economic opportunities

The Digital Sovereignty Framework

Digital sovereignty encompasses four interconnected dimensions that collectively enable organizations and nations to maintain autonomous control over their technological ecosystems.

  1. Data sovereignty addresses control over data location, access, and governance, ensuring that information remains subject to jurisdictions that respect privacy rights and democratic oversight.
  2. Technology sovereignty focuses on independence from proprietary vendors through adoption of open standards, interoperable systems, and transparent technology stacks that can be inspected, modified, and controlled without external permissions.
  3. Operational sovereignty ensures autonomous control over processes, policies, and procedures, enabling organizations to make decisions aligned with their values and legal obligations rather than vendor requirements or foreign government demands.
  4. Assurance sovereignty provides verifiable integrity and security across systems, establishing trust through transparency, auditability, and demonstrable compliance with established standards.

These dimensions work in synergy to create resilience against geopolitical pressure. An organization might achieve data sovereignty by storing information within national borders, but without technology sovereignty through open-source infrastructure, it remains vulnerable to vendor actions such as Microsoft’s sudden price increases that prompted French regions to migrate away from proprietary software. Similarly, operational sovereignty requires not merely formal control but the technical expertise and organizational capacity to exercise that control independently, as Estonia demonstrated through its X-Road infrastructure that enables secure government data exchange while maintaining complete national control.

European Strategic Response

The European Union has recognized digital sovereignty as essential to strategic autonomy and has launched comprehensive initiatives to address technological dependencies. The GAIA-X project aims to establish a federated, secure data infrastructure based on European values of transparency, openness, and data protection. Rather than competing directly with hyperscale American cloud providers through massive capital investments, GAIA-X focuses on creating standards, governance frameworks, and interoperability requirements that enable European cloud providers to offer services meeting sovereignty requirements while remaining competitive on capabilities. The initiative establishes data spaces for sectors including healthcare, automotive, and energy, facilitating secure information exchange while ensuring participants retain control over data access and usage. The European Chips Act represents a 43 billion euro commitment to double the continent’s share of global semiconductor production from 10 to 20 percent by 2030. This industrial policy acknowledges that technological autonomy requires domestic manufacturing capacity for critical components, reducing vulnerability to export controls and supply chain disruptions. The legislation permits state subsidies for semiconductor projects and coordinates member state efforts to avoid fragmentation that would undermine European competitiveness. Projects such as TSMC’s German facility and Intel’s European expansion demonstrate how the Chips Act incentivizes investment in European manufacturing infrastructure, though challenges remain around coordination among member states and the massive capital requirements involved. The Digital Markets Act tackles platform dominance by imposing specific obligations on designated gatekeeper companies, preventing anti-competitive practices that lock users into closed ecosystems. By requiring interoperability, data portability, and fair treatment of third-party services, the DMA aims to reduce dependence on dominant American platforms while creating space for European alternatives to emerge.

By requiring interoperability, data portability, and fair treatment of third-party services, the DMA aims to reduce dependence on dominant American platforms while creating space for European alternatives to emerge

The regulation has drawn sharp criticism from the Trump administration, which characterizes it as discriminatory protectionism and has threatened retaliatory measures, but European officials view it as essential to preserving regulatory sovereignty and preventing platform monopolies from undermining democratic governance. The EU AI Act establishes the world’s first comprehensive legal framework for artificial intelligence, classifying systems by risk level and imposing proportionate requirements for transparency, safety, and fundamental rights protection. By regulating AI at the European level, the legislation aims to ensure that systems deployed within the Union align with European values regardless of where they were developed. The Act includes specific provisions for general-purpose AI models, imposing transparency requirements and additional evaluations for high-capability systems, while providing reduced requirements for open-source models to encourage development of sovereign alternatives. This regulatory approach seeks to balance innovation with accountability, creating conditions where European AI development can flourish without sacrificing safety or democratic values.

Open Source as Sovereignty Infrastructure

Open-source software provides foundational building blocks for digital sovereignty by offering transparency, eliminating vendor lock-in, and enabling complete control over technological ecosystems. Unlike proprietary solutions where organizations depend on vendor roadmaps, pricing decisions, and ongoing support, open-source platforms grant users the freedom to inspect source code, modify functionality, deploy wherever desired, and maintain systems independently.

  • PostgreSQL demonstrates this principle in database management, offering enterprise-grade capabilities without the licensing costs and restrictions associated with Oracle or SQL Server, while enabling organizations to deploy on-premises, in private clouds, or across hybrid environments according to sovereignty requirements.
  • ERPNext exemplifies open-source enterprise resource planning, providing comprehensive business management capabilities under the GNU General Public License without the vendor lock-in and cost structures that characterize SAP or Oracle systems. The platform’s open architecture enables organizations to customize workflows, develop specialized integrations, and maintain complete control over business data without requiring vendor approval or incurring additional fees. With over 30,000 deployments globally, ERPNext demonstrates that open-source solutions can achieve enterprise scale while preserving organizational autonomy.
  • Corteza represents the next generation of low-code sovereignty platforms, enabling organizations to build custom business applications without extensive coding while maintaining complete control over the underlying technology stack. Licensed under Apache 2.0, Corteza provides workflow automation, case management, and customer relationship management capabilities that can be deployed entirely within organizational infrastructure, ensuring that sensitive business processes and customer data remain under direct control. The platform’s modular architecture and extensive API support facilitate integration with other sovereign systems while avoiding dependencies on proprietary platforms whose terms of service or legal jurisdictions might conflict with organizational requirements.
  • The Sovereign Cloud Stack initiative takes the open-source sovereignty approach to infrastructure level, providing a complete, modular software stack for deploying infrastructure-as-a-service and container-as-a-service environments. Built on proven components including OpenStack and Kubernetes, SCS enables cloud service providers to offer sovereign alternatives to hyperscale American platforms while maintaining full interoperability and transparency. The project emphasizes operational sovereignty through open operations practices, certification programs that verify compliance with standards, and federation capabilities that enable multiple providers to offer compatible services without fragmenting the ecosystem.

Implementation Pathways and Real-World Adoption

Practical implementation of digital sovereignty requires strategic approaches that balance idealism with operational realities. France’s Île-de-France Region demonstrated this through its migration from Microsoft 365 to the sovereign alternative eXo Platform, reducing annual costs by 75 percent while establishing better control over data for 550,000 high school students and teachers. This decision was driven by multiple factors: protection of minor students’ data from extraterritorial laws, sharp price increases from Microsoft, and the strategic objective of reinvesting in the local digital ecosystem. The gradual approach, starting with collaboration tools while supporting organizational change through training and field feedback, enabled successful adoption without overwhelming staff with disruptive transitions.Germany’s Schleswig-Holstein state undertook an even more ambitious migration, moving 40,000 Microsoft Exchange accounts to open-source alternatives including Nextcloud, LibreOffice, and Open-Xchange. This initiative reflects growing recognition that sustainable digital autonomy requires moving beyond rhetoric to implement concrete alternatives, even when such transitions involve significant short-term costs and organizational adjustment. The German case demonstrates that sovereignty is achievable at scale when political leadership commits to long-term strategic objectives rather than optimizing solely for immediate costs or convenience.Estonia’s X-Road infrastructure represents perhaps the most comprehensive sovereignty success story, providing the secure data exchange backbone that enabled the country to achieve 100 percent digitalization of government services. Designed to enable secure, cost-efficient data sharing across government agencies while minimizing integration complexity, X-Road operates over the public internet using standardized protocols that ensure interoperability between public and private sector systems. The platform’s success has made it a global model, with Finland adopting the system through the Nordic Institute for Interoperability Solutions and Ukraine implementing a similar framework called Trembita to maintain government operations even during wartime. Estonia’s experience demonstrates that digital sovereignty, far from being a constraint on innovation or efficiency, can actually enhance both when implemented with strategic foresight and technical excellence.

Limitations, Trade-offs, and Strategic Considerations

Digital sovereignty implementation involves substantial challenges and trade-offs that must be acknowledged and managed

Digital sovereignty implementation involves substantial challenges and trade-offs that must be acknowledged and managed. The cost structure differs significantly from hyperscale cloud services, which benefit from massive economies of scale that enable competitive pricing for standardized offerings. Sovereign alternatives typically involve higher initial investments in infrastructure, greater complexity in operations, and ongoing expenses for specialized expertise. Organizations must invest in local data centers, establish operational teams capable of managing complex systems without vendor support, and maintain compliance frameworks that address jurisdiction-specific requirements. Studies suggest that compliance costs alone can absorb significant resources through audits, encryption implementation, monitoring systems, and legal oversight.Technical capabilities represent another constraint, as sovereign solutions sometimes lag behind hyperscale providers in feature breadth, geographic distribution, and cutting-edge capabilities such as advanced AI services. Organizations adopting sovereign clouds may find themselves managing multiple systems to achieve functionality readily available from integrated providers, increasing operational complexity and requiring more sophisticated technical teams. The shortage of personnel with jurisdiction-specific security and compliance expertise compounds this challenge, as successful sovereignty implementation requires not merely technical skills but deep understanding of regulatory requirements, geopolitical risks, and organizational governanceThe fragmentation risk emerges when sovereignty initiatives proceed without coordination, creating incompatible systems that increase costs for vendors and users while undermining the interoperability benefits of standardized platforms. The Sovereign Cloud Stack project explicitly addresses this concern through standardization efforts and certification programs designed to ensure compatibility across different sovereign providers. Similarly, GAIA-X emphasizes federation and shared standards to prevent European sovereignty efforts from creating a patchwork of incompatible national solutions that would reduce competitiveness and limit economies of scale. Despite these challenges, organizations increasingly view sovereignty as a strategic imperative rather than a discretionary expense.

Research by OVHcloud found that 65 percent of organizations are willing to pay 11 to 30 percent premiums for sovereign technology products meeting regulatory and sovereignty requirements, with only 6.5 percent unwilling to pay any premium.

Research by OVHcloud found that 65 percent of organizations are willing to pay 11 to 30 percent premiums for sovereign technology products meeting regulatory and sovereignty requirements, with only 6.5 percent unwilling to pay any premium. This willingness reflects growing recognition that sovereignty provides tangible benefits including enhanced customer trust, improved governance, reduced geopolitical risk, and protection against vendor coercion such as arbitrary price increases or sudden feature changes.

Digital Sovereignty as Geopolitical Resilience

The 2026 geopolitical landscape is characterized by what analysts describe as a fragmenting global order, with US-China competition intensifying, multiple military conflicts ongoing, and the increasing use of gray-zone tactics including cyberattacks, sabotage, and disinformation targeting corporate infrastructure. In this environment, digital sovereignty transitions from a defensive posture to a proactive strategy for building resilience against diverse forms of coercion. Organizations and nations that establish sovereign infrastructure position themselves to weather disruptions whether they originate from hostile governments, vendor disputes, regulatory conflicts, or supply chain compromises.The resilience value of sovereignty became apparent during the SolarWinds attack, where organizations dependent on compromised software found themselves facing sophisticated espionage regardless of their security practices because the vulnerability existed in their supply chain. Sovereign approaches emphasizing open-source components, supply chain transparency, and operational control would have provided earlier detection and faster remediation because the affected organizations would possess both technical access to their systems and operational capacity to respond independently rather than waiting for vendor patches and guidance.The accelerating push toward sovereign AI reflects recognition that algorithmic systems increasingly mediate access to information, services, and opportunities. When these systems are developed by foreign entities using training data and architectural choices reflecting different values and priorities, they introduce subtle but pervasive forms of dependency. Sovereign AI initiatives emphasize local training data reflecting national languages and cultures, governance frameworks ensuring accountability and transparency, and operational control enabling intervention when systems produce unacceptable outcomes. The EU AI Act’s regulatory approach aims to ensure that regardless of development origin, AI systems deployed in Europe meet European standards for safety, transparency, and fundamental rights protection.

The 2026 geopolitical landscape is characterized by what analysts describe as a fragmenting global order, with US-China competition intensifying, multiple military conflicts ongoing, and the increasing use of gray-zone tactics including cyberattacks, sabotage, and disinformation targeting corporate infrastructure.

The Path Forward: Integration Without Dependency

Digital sovereignty does not require autarky or technological isolation, which would be economically inefficient and technically counterproductive. Rather, it demands strategic choices about which dependencies are acceptable and which create unacceptable vulnerabilities, combined with deliberate investments in capabilities that enable autonomous operation when necessary. The GAIA-X federation model exemplifies this approach, enabling European and international providers to participate in a common data infrastructure ecosystem while adhering to European governance principles and sovereignty requirements. This creates optionality, where organizations can choose from multiple providers offering compatible services rather than being locked into single vendor ecosystems.The Sovereign Cloud Stack similarly emphasizes interoperability and federation, ensuring that organizations adopting sovereign infrastructure can still collaborate globally while maintaining control over their own systems. The modular architecture enables mixing sovereign components with external services according to risk assessments and operational requirements, rather than imposing binary choices between complete sovereignty and cloud efficiency. This pragmatic approach acknowledges that different workloads have different sovereignty requirements: processing health records for national citizens requires stringent data sovereignty, while collaborating on open-source software development involves different considerations.Open-source foundations provide critical enabling infrastructure for this balanced approach because they eliminate the binary choice between vendor dependency and isolation. Organizations adopting PostgreSQL or Kubernetes gain access to cutting-edge capabilities developed by global communities while maintaining the option to operate independently if geopolitical circumstances require. The transparency of open-source systems enables security auditing, the absence of licensing restrictions prevents vendor coercion through pricing changes or feature limitations, and the community governance model ensures no single nation or company controls the technology’s evolution.

References:

  1. https://www.insightforward.co.uk/top-10-geopolitical-risks-for-business-2026/
  2. https://www.exoscale.com/blog/cloudact-vs-gdpr/
  3. https://en.wikipedia.org/wiki/CLOUD_Act
  4. https://verfassungsblog.de/schrems-ii-the-right-to-privacy-and-the-new-illiberalism/
  5. https://www.sproof.com/en/what-is-the-us-cloud-act-the-underestimated-risk-to-european-company-data-and-digital-sovereignty/
  6. https://www.kharon.com/brief/iran-sanctions-maximum-pressure-tech-exports
  7. https://www.swp-berlin.org/10.18449/2019C29/
  8. https://www.cfr.org/backgrounder/chinas-huawei-threat-us-national-security
  9. https://jsis.washington.edu/news/u-s-tiktok-ban-national-security-and-civil-liberties-concerns/
  10. https://www.american.edu/sis/news/20250123-national-security-and-the-tik-tok-ban.cfm
  11. https://jsis.washington.edu/news/chinese-data-localization-law-comprehensive-ambiguous/
  12. https://www.mayerbrown.com/-/media/files/perspectives-events/publications/2016/11/china-passes-cybersecurity-law/files/get-the-full-update/fileattachment/161110-hkgprc-cybersecuritydataprivacy-tmt.pdf
  13. https://incountry.com/blog/what-is-russias-data-residency-enforcement-actually-about/
  14. https://breached.company/case-study-sec-fines-and-the-solarwinds-cyber-attack-a-corporate-accountability-crisis/
  15. https://ejil.org/pdfs/33/4/3298.pdf
  16. https://www.ainvest.com/news/geopolitical-risks-transatlantic-tech-tensions-impact-global-tech-stocks-2512/
  17. https://theconversation.com/why-the-eu-has-no-choice-but-to-respond-to-donald-trumps-bullying-on-tech-regulation-with-a-coercion-investigation-265618
  18. https://www.planetcrust.com/top-enterprise-systems-for-digital-sovereignty/
  19. https://www.leidenlawblog.nl/articles/gaia-x-europes-values-based-counter-to-u-s-cloud-dominance
  20. https://www.gisreportsonline.com/r/international-sanctions/
  21. https://www.sciencedirect.com/science/article/pii/S2405844024160793
  22. https://eias.org/publications/op-ed/the-eus-semiconductor-dilemma-what-does-it-take-to-regain-strategic-autonomy/
  23. https://www.euronews.com/business/2024/03/15/chinas-semiconductor-production-challenges-could-be-a-boon-for-europe
  24. https://www.atlanticcouncil.org/blogs/geotech-cues/the-sovereignty-trap/
  25. https://www.digitalsamba.com/blog/sovereign-ai-in-europe
  26. https://nortal.com/insights/why-digital-sovereignty-matters-and-how-x-road-makes-it-happen
  27. https://www.exoplatform.com/blog/digital-sovereignty-when-public-actors-move-from-words-to-action/
  28. https://en.wikipedia.org/wiki/Gaia-X
  29. https://www.polytechnique-insights.com/en/columns/digital/gaia-x-the-bid-for-a-sovereign-european-cloud/
  30. https://www.tno.nl/en/digital/data-sharing/gaia-digital-sovereignty/
  31. http://www.ifri.org/en/memos/groundbreaking-chip-sovereignty-europes-strategic-push-semiconductor-race
  32. https://theconversation.com/google-antitrust-enforcement-and-the-future-of-european-digital-sovereignty-254080
  33. https://www.intereconomics.eu/contents/year/2023/number/5/article/big-tech-the-platform-economy-and-the-european-digital-markets.html
  34. https://en.wikipedia.org/wiki/Artificial_Intelligence_Act
  35. https://allthingsopen.org/articles/digital-sovereignty-independence-through-open-source
  36. https://scs.community/assets/slides/Parldigi-Dinner-Juni-2022-Sovereign-Cloud-Stack-f7254ff4b5d6f2464f4de1c70a9d62702cd93bad3ef49131e03513235a15cfaf2be783e1140ab5443259521df30465b6569e84d06e16e651d09709544e1e187f.pdf
  37. https://scs.community
  38. https://www.n-ix.com/data-sovereignty/
  39. https://erp.today/why-the-data-sovereignty-push-will-require-complexity-and-cost-controls/
  40. https://corporate.ovhcloud.com/en-gb/newsroom/news/ovhcloud-ne-sovereignty2025/
  41. https://iit.adelaide.edu.au/system/files/media/documents/2022-07/iit-pb17-australias-response-to-chinese-coercion.pdf
  42. https://iit.adelaide.edu.au/ua/media/1479/wp04-economic-coercion-by-china-the-effects-on-australias-merchandise-exports.pdf
  43. https://www.internationalaffairs.org.au/australianoutlook/hidden-lessons-from-chinas-coercion-campaign-against-australia/
  44. https://www.lowyinstitute.org/publications/chinese-coercion-australian-resilience
  45. https://www.atlanticcouncil.org/blogs/new-atlanticist/how-venezuela-uses-crypto-to-sell-oil-and-what-the-us-should-do-about-it/
  46. https://thetricontinental.org/newsletterissue/us-sanctions-venezuela-chile/
  47. https://observatorio.gob.ve/wp-content/uploads/2023/06/NUMEROS-BLOQUEO-INGLES-xpag-1.pdf
  48. https://privacymatters.dlapiper.com/2023/01/uk-data-adequacy-post-brexit-the-uks-first-data-bridge/
  49. https://trustarc.com/resource/uk-data-privacy-laws-post-brexit/
  50. https://www.wellington.com/en-nl/institutional/insights/geopolitics-in-2026-risks-and-opportunities-were-watching
  51. http://international-review.icrc.org/articles/the-solarwinds-hack-lessons-for-international-humanitarian-organizations-919
  52. https://www.williamfry.com/knowledge/europes-ai-ambitions-inside-the-eus-e200-billion-digital-sovereignty-plan/
  53. https://www.europarl.europa.eu/topics/en/article/20230601STO93804/eu-ai-act-first-regulation-on-artificial-intelligence
  54. https://gaia-x.eu/gaia-x-strengthens-european-digital-sovereignty-at-european-parliament-reception/
  55. https://aireapps.com/articles/how-opensource-ai-protects-enterprise-system-digital-sovereignty/
  56. https://www.getronics.com/cyberwar-sanctions-sovereignty-when-geopolitics-becomes-a-security-gap/
  57. https://academic.oup.com/book/56327/chapter/445434093
  58. https://www.chathamhouse.org/publications/the-world-today/2025-12/world-2026
  59. https://eu.boell.org/en/2025/09/17/canada-and-europe-need-build-firewall-against-us-tech-coercion
  60. https://dgap.org/en/research/publications/tech-sanctions-against-russia
  61. https://www.crisisgroup.org/global/10-conflicts-watch-2026
  62. https://www.ecpmf.eu/open-letter-to-president-von-der-leyen-on-defending-digital-sovereignty/
  63. https://www.economist.com/the-world-ahead/2025/11/10/the-contours-of-21st-century-geopolitics-will-become-clearer-in-2026
  64. https://www.europarl.europa.eu/RegData/etudes/BRIE/2024/762384/EPRS_BRI(2024)762384_EN.pdf
  65. https://trendsresearch.org/insight/the-role-of-advanced-technology-reconfiguring-the-post-2026-geopolitical-order/
  66. https://www.chathamhouse.org/2025/10/case-expanding-digital-public-infrastructure/summary
  67. https://www.fgveurope.de/wp-content/uploads/2025/12/relatorio_the_digital_economy_and_sanctions_ap1-1.pdf
  68. https://www.reuters.com/world/china/global-markets-view-usa-2026-01-05/
  69. https://unicrew.com/blog/technology-of-the-future-inevitable-coercion-or-free-choice/
  70. https://destcert.com/resources/data-sovereignty-vs-data-residency/
  71. https://www.crossborderdataforum.org/cloudactfaqs/
  72. https://www.fortra.com/blog/what-data-residency-how-it-affects-your-compliance
  73. https://aisel.aisnet.org/ecis2025/security/security/10/
  74. https://aws.amazon.com/compliance/cloud-act/
  75. https://resourcehub.bakermckenzie.com/en/resources/global-data-and-cyber-handbook/asia-pacific/china/topics/data-localization-and-regulation-of-non-personal-data
  76. https://stonefly.com/blog/data-sovereignty-vs-data-residency-compliance-guide/
  77. https://www.wiley.law/alert-The-CLOUD-Act-Data-Access-Agreement-10-Things-That-US-Telecommunications-Companies-Need-to-Know-Now
  78. https://www.hsfkramer.com/notes/data/2025-posts/Blog-post-template-text-only-version
  79. https://www.cookieyes.com/blog/data-sovereignty/
  80. https://www.csis.org/analysis/cloud-act-and-transatlantic-trust
  81. https://translate.hicom-asia.com/question/how-does-chinas-cybersecurity-law-impact-data-localization/
  82. https://www.oracle.com/europe/security/saas-security/data-sovereignty/data-sovereignty-data-residency/
  83. https://www.kiteworks.com/risk-compliance-glossary/us-cloud-act/
  84. https://www.hudson.org/technology/geopolitics-risks-data-localization-southeast-asia-john-lee
  85. https://gorrissenfederspiel.com/en/eu-reimposes-wide-ranging-sanctions-against-iran/
  86. https://www.bis.gov/licensing/country-guidance/iran-export-controls
  87. https://www.huawei.com/kr/facts/voices-of-huawei/5g-security
  88. https://www.theguardian.com/technology/2025/jan/23/is-tiktok-a-national-security-threat-or-is-the-ban-a-smokescreen-for-superpower-rivalry
  89. https://researchservices.cornell.edu/policies/export-controls-iran-sanctions-guidance-document
  90. https://www.euronews.com/next/2025/07/13/huaweis-paradox-in-spain-no-to-5g-but-yes-to-wiretap-storage
  91. https://www.whitehouse.gov/presidential-actions/2025/09/saving-tiktok-while-protecting-national-security/
  92. https://ofac.treasury.gov/faqs/topic/1551
  93. https://www.dw.com/en/europe-china-huawei-zte-ban-internet-telecommunications-artificial-intelligence-chips-5g/a-74798073
  94. https://www.culawreview.org/journal/freedoms-loss-to-security-the-tiktok-ban-that-was-supposed-to-save-our-data
  95. https://en.wikipedia.org/wiki/International_sanctions_against_Iran
  96. https://www.whitehouse.gov/fact-sheets/2025/09/fact-sheet-president-donald-j-trump-saves-tiktok-while-protecting-national-security/
  97. https://finintegrity.org/september-2025-sanctions-and-export-controls-update/
  98. https://www.gmfus.org/news/why-german-debate-5g-and-huawei-critical
  99. https://www.convotis.com/en/news/switching-to-open-source-a-key-step-toward-digital-sovereignty/
  100. https://eai.eu/blog/the-blurry-line-between-data-protection-and-coercion/
  101. https://www.realinstitutoelcano.org/en/analyses/consequences-and-implications-of-the-line-issue-for-korea-and-middle-powers/
  102. https://mautic.org/blog/mautic-and-digital-sovereignty-an-open-source-path-enterprises-can-trust
  103. https://www.europarl.europa.eu/RegData/etudes/STUD/2025/769349/ECTI_STU(2025)769349_EN.pdf
  104. https://onlinelibrary.wiley.com/doi/full/10.1002/poi3.358
  105. https://www.svensktnaringsliv.se/mojapr_anti-coercion-main-points-from-swedish-confederation-of-enterpris_1178118.html/Anti+coercion+-+main+points+from+Swedish+Confederation+of+Enterprise.pdf
  106. https://www.redhat.com/en/blog/path-digital-sovereignty-why-open-ecosystem-key-europe
  107. https://lexafrica.com/2025/09/uganda-data-protection-conviction-digital-privacy-enforcement-africa/
  108. https://gaia-x.eu/focus-on-digital-sovereignty-in-europe-gaia-x-as-a-central-topic-at-the-2025-digital-summit/
  109. https://www.imbrace.co/how-open-source-powers-the-future-of-sovereign-ai-for-enterprises/
  110. https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/brexit_en
  111. https://clusif.fr/wp-content/uploads/2024/03/20240216-Transfert-vers-les-EU.pdf
  112. https://ico.org.uk/for-organisations/data-protection-and-the-eu/data-protection-and-the-eu-in-detail/the-uk-gdpr/international-data-transfers/
  113. https://moderndiplomacy.eu/2025/12/02/when-software-becomes-a-weapon-solarwinds-is-our-final-warning/
  114. https://noyb.eu/en/us-cloud-soon-illegal-trump-punches-first-hole-eu-us-data-deal
  115. https://www.cnil.fr/en/adequacy-european-patent-organisation-and-extension-united-kingdom-adequacy-decisions-edpb-adopts
  116. https://www.orangecyberdefense.com/fileadmin/se/White_paper/Winds-of-change—Causes-and-implications-of-the-SolarWinds-attack.pdf
  117. https://www.linkedin.com/pulse/si-les-%C3%A9tats-unis-abrogeaient-le-cloud-act-ffdqe
  118. https://www.cloudi-fi.com/blog/brexit-and-gdpr-do-the-companies-in-the-uk-still-need-to-comply
  119. https://www.zscaler.com/resources/security-terms-glossary/what-is-the-solarwinds-cyberattack
  120. https://www.congress.gov/crs-product/R46724
  121. https://www.taylorwessing.com/fr/global-data-hub/2024/uk-gdpr—what-you-really-need-to-know/data-transfers-what-you-need-to-know
  122. https://www.cisecurity.org/insights/case-study/guiding-sltts-through-the-solarwinds-supply-chain-attack
  123. https://techpolicy.press/europes-digital-sovereignty-is-a-democratic-imperative
  124. https://ecipe.org/publications/eu-export-of-regulatory-overreach-dma/
  125. https://esthinktank.com/2025/11/25/semiconductors-as-key-strategic-assets-navigating-global-and-european-security-challenges/
  126. https://artificialintelligenceact.eu/high-level-summary/
  127. https://www.brookings.edu/articles/on-european-digital-sovereignty-and-platform-regulation-with-marietje-schaake-the-techtank-podcast/
  128. https://www.cife.eu/Ressources/FCK/files/publications/policy%20paper/2025/182_Kerschbaumer_Samuel_Super_Chips_and_Supply_Chains_Europe_CIFE_Policy_Paper.pdf
  129. https://www.rolandberger.com/en/Insights/Publications/AI-sovereignty.html
  130. https://www.elysee.fr/en/emmanuel-macron/2025/11/18/fairer-markets-in-support-of-digital-sovereignty
  131. https://www.europeanfiles.eu/digital/the-european-chips-act-its-now-or-never
  132. https://www.sciencespo.fr/public/chaire-numerique/wp-content/uploads/2021/04/GATEKEEPERS-AND-PLATFORM-REGULATION-Is-the-EU-moving-in-the-Right-Direction-Francesco-DUCCI-March-2021-2.pdf
  133. https://europeanbusinessmagazine.com/business/europes-semiconductor-industry-can-it-compete-with-the-us-and-china/
  134. https://www.youtube.com/watch?v=5h5HW-HEWk0
  135. https://www.exasol.com/blog/data-sovereignty-global-compliance/
  136. https://uk.diplomatie.gouv.fr/en/summit-european-digital-sovereignty-delivers-landmark-commitments
  137. https://entro.security/glossary/data-sovereignty/
  138. https://www.weforum.org/stories/2025/01/europe-digital-sovereignty/
  139. https://techpolicy.press/the-path-to-a-sovereign-tech-stack-is-via-a-commodified-tech-stack
  140. https://www.fime.com/blog/blog-15/post/the-new-digital-sovereignty-why-payments-and-identity-now-shape-national-policy-604
  141. https://sovereigncloudstack.org/en/
  142. https://www.teradata.com/insights/data-security/why-data-sovereignty-matters
  143. https://www.bennettschool.cam.ac.uk/blog/europes-digital-sovereignty-crossroads/
  144. https://www.katonic.ai/blog/building-your-ai-stack-data-sovereignty-as-your-foundation-layer
  145. https://www.renaissancenumerique.org/wp-content/uploads/2022/06/renaissancenumerique_proceedings_digitalsovereignty.pdf
  146. https://www.cloud4c.com/blogs/seven-essential-steps-to-building-a-sovereign-ai-stack
  147. https://blog.seeburger.com/cloud-sovereignty-in-a-fragmented-world-how-to-mitigate-geopolitical-risks-with-smarter-data-integration/
  148. https://yjil.yale.edu/posts/2023-06-21-the-opacity-of-economic-coercion
  149. https://www.veeam.com/blog/europe-digital-sovereignty-resilience.html
  150. https://www.fairbanks.nl/digital-sovereignty-in-a-time-of-geopolitical-uncertainty/
  151. https://www.ohchr.org/sites/default/files/Documents/Issues/UCM/ReportHRC48/States/submission-venezuela.docx
  152. https://www.forrester.com/blogs/geopolitical-volatility-puts-digital-sovereignty-center-stage/
  153. https://www.lowyinstitute.org/sites/default/files/2022-10/McGREGOR%20China%20coercion%20PDF%20v9.pdf
  154. https://www.ie.edu/uncover-ie/digital-sovereignty-master-in-public-policy/
  155. https://lawreview.law.uic.edu/news-stories/economic-sanctions-in-international-law-venezuelas-conundrum/
  156. https://www.ussc.edu.au/chinas-trade-restrictions-on-australian-exports
0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *