EU Proposes Tech Sovereignty Package to Reduce Reliance

The European Commission on June 3-5, 2026 proposed a "European Technological Sovereignty Package" including a Chips Act 2.0, Cloud and AI Development Act, and Open Source Strategy to reduce the EU's reliance on non-EU technology suppliers. The Commission stated the EU depends on foreign countries for more than 80% of key digital products and services. Executive Vice-President Henna Virkkunen said the proposals aim to ensure no cloud provider has a "kill switch" for critical workloads.

EU Proposes Tech Sovereignty Package to Reduce Reliance The European Commission on June 3-5, 2026 proposed a coordinated "European Technological Sovereignty Package" that bundles draft legislation and strategies to reduce the EU's dependence on non-EU technology suppliers. The package includes a draft Chips Act 2.0 , a Cloud and AI Development Act CADA , a new Open Source Strategy , and a roadmap for digitalizing the energy system, according to the Commission press materials and reporting by The Record, CNBC, The Next Web, and Tech Policy. The Commission, quoted in coverage by The Record, says the EU relies on foreign countries for more than 80% of key digital products and services. Executive Vice-President Henna Virkkunen told reporters the proposals aim to ensure no cloud provider of critical workloads has a "kill switch," a point highlighted in reporting by CNBC and The Next Web. The package must still be approved by EU member states and follow the ordinary legislative process. What happened The European Commission proposed the "European Technological Sovereignty Package," a coordinated set of texts that include draft Chips Act 2.0 , the Cloud and AI Development Act CADA , an Open Source Strategy , and a roadmap for digitalizing the energy sector, per the Commission press materials and coverage in The Record, CNBC, The Next Web, and Tech Policy. According to the Commission, reported by The Record, the EU relies on foreign countries for more than 80% of key digital products, services, infrastructure and intellectual property. Executive Vice-President Henna Virkkunen is quoted in CNBC and The Next Web saying, "We want to be sure nobody has a kill switch," and Commission President Ursula von der Leyen was quoted in CNBC saying, "We cannot afford to depend on others for the technologies that keep our hospitals running, our energy grids stable and our services secure." The Commission describes CADA as an EU-wide framework to set differing levels of cloud sovereignty for sensitive public-sector workloads, and the Commission proposal for CADA includes a tiered sovereignty model, as described in The Next Web and the Commission communication. Technical details Per the Commission proposals and coverage, CADA establishes multiple sovereignty tiers that public authorities would use to match workloads to required levels of independence from third-country legal jurisdictions, with the highest tiers demanding demonstrable EU-based control and personnel. Reporting by The Next Web and CNBC highlights the specific tension with the U.S. Cloud Act, which the Commission and reporters say complicates U.S. providers' ability to meet the strictest sovereignty criteria. The Chips Act 2.0 text, as described in Commission materials and reporting, shifts emphasis from purely increasing fabrication capacity toward stimulating demand, securing semiconductor design capabilities in Europe, and prioritizing advanced foundry capacity within the bloc. The Open Source Strategy , discussed in Tech Policy and The Record, commits to scaling European open-source alternatives in priority areas and funding long-term maintenance and security of critical open-source infrastructure; Tech Policy cites the Commission's acknowledgement that the EU spends EUR 264 billion annually on IT products and services, a figure the Commission used to frame vendor lock-in as a structural dependency. Industry context Editorial analysis: Policymakers globally have used procurement, subsidy and regulatory levers to address strategic tech dependencies; the Commission's package follows that pattern by combining supply-side measures for semiconductors with demand-side rules for cloud and software procurement. Industry reporting frames CADA's tiering as a practical mechanism to restrict the most sensitive public workloads to providers that can meet strict legal and operational controls, effectively raising compliance costs for non-EU vendors. The open-source commitments depart from past EU practice by treating inspectable, community-maintained software as a component of sovereignty rather than a niche procurement preference, a shift Tech Policy and open-source advocates describe as structurally significant. What to watch For practitioners: key indicators include how EU member states react during the Council and Parliament phases, the final text of CADA's sovereignty tiers and compliance tests, the size and allocation of funding for Chips Act 2.0 measures including incentives for design and foundries , and the operational details of the Open Source Strategy, especially procurement guidance and long-term maintenance funding mechanisms. Observers should also track vendor responses and legal analysis around the intersection of CADA requirements and extraterritorial laws such as the U.S. Cloud Act, which coverage in CNBC and The Next Web flagged as a practical barrier for some non-EU providers. Implementation timelines and the Commission's guidance on which public-sector workloads qualify as "critical" will determine near-term market impact. Implications for practitioners Editorial analysis: Cloud architects and security teams in EU public organisations and regulated industries will likely need to map workloads to sovereignty tiers if the proposals advance, which could change procurement choices, data residency controls and contractual terms. Procurement and open-source program managers should monitor the Commission's guidance on certified open-source stacks and funding opportunities for maintaining critical components. For semiconductor and hardware-focused teams, the Chips Act 2.0's demand-side measures indicate a multi-year effort to reshape European supply chains, but the outcome will depend on funding scale, incentives for design ecosystems, and industrial partners. Scoring Rationale This is a major EU policy package that reshapes procurement, cloud rules, semiconductor incentives and open-source support. The package sets regulatory and funding directions with multi-year implications for infrastructure and vendor selection, making it highly relevant to practitioners across cloud, security, procurement and hardware teams. Practice with real SaaS & B2B data 90 SQL & Python problems · 15 industry datasets Active Enterprise OrganizationsEasy /problems/sql/active-enterprise-organizations Paid Invoices Over $500Medium /problems/sql/paid-invoices-over-500 Subscription Renewal Risk AssessmentHard /problems/sql/subscription-renewal-risk-assessment 250 free problems · No credit card See all SaaS & B2B problems /problems/datasets/saas