Twenty-six industry groups from across Europe have jointly cautioned against potential discrimination targeting tech giants like Amazon, Google, and Microsoft in the European Union’s proposed cybersecurity certification scheme (EUCS) for cloud services. This warning comes ahead of a crucial meeting involving the European Commission, EU cybersecurity agency ENISA, and member states to deliberate on the EUCS framework.
Originally drafted by ENISA in 2020, the EUCS aims to aid governments and businesses in selecting secure and trustworthy cloud computing providers. The global cloud computing sector, which generates substantial annual revenue and is poised for double-digit growth, stands to benefit significantly from this certification.
Earlier versions of the EUCS included sovereignty requirements, necessitating U.S. tech giants to collaborate with EU-based entities for storing and processing data within the bloc to attain the highest cybersecurity label. However, these requirements were removed in a March revision, aligning the scheme more closely with industry best practices and principles of non-discrimination.
In a joint letter addressed to EU countries, the industry groups emphasized the importance of an inclusive EUCS that supports the free movement of cloud services across Europe. They argued that such a scheme would foster innovation, bolster Europe’s digital ambitions, and enhance resilience and security across the region.
The signatories, which include prominent bodies like the American Chamber of Commerce to the EU, various national industry associations, and tech advocacy groups, stressed the necessity for diverse and resilient cloud technologies to meet specific market demands and compete globally.
Among those advocating for stricter sovereignty measures are EU-based cloud vendors such as Deutsche Telekom, Orange, and Airbus. Their concerns primarily revolve around potential unauthorized access to European data by non-EU governments under foreign laws.
As discussions progress, the outcome of Tuesday’s meeting will be pivotal in shaping the final contours of the EUCS, balancing security imperatives with the principles of fair competition and market access within the EU’s digital economy.