TL;DR
A July 16 analysis from Thorsten Meyer AI argues that Europe’s cloud and AI certifications — ISO 27001, SOC 2, BSI C5, Gaia-X, EUCS — all test security practice, while only France’s SecNumCloud tests ownership, capping non-EU capital and voting rights at 24% individually and 39% collectively. That cap is what determines whether a foreign government can compel access to customer data. The proposed Cloud and AI Development Act (CADA) would replace badge-based procurement with four Union assurance levels, but it remains only a proposal.
A vendor can display ISO 27001, SOC 2 Type II, BSI C5 and Gaia-X membership — every badge real, audited and correctly shown — and still not answer the question that decides regulated European cloud and AI deals: can a foreign government compel access to your data? An analysis published July 16 by Thorsten Meyer AI finds that exactly one European framework tests that question, and it does so with a number rather than a security control: under France’s SecNumCloud qualification, capital and voting rights held by companies outside the EU must not exceed 24% individually or 39% collectively.
SecNumCloud, run by French cybersecurity agency ANSSI, pairs the ownership cap with EU domicile, EU-only storage and audited key custody across more than 360 criteria in version 3.2 — roughly ten times the complexity of ISO 27001, according to the analysis. Only about nine to ten providers hold it, including OVHcloud, Outscale, Scaleway, Numspot and Cloud Temple. AWS, Microsoft Azure and Google Cloud are structurally ineligible in their native form; they reach the market through joint ventures such as S3NS (Thales plus Google) and Bleu (Capgemini plus Orange, on Azure).
The analysis sorts the certification landscape into two piles. The first — ISO 27001, SOC 2, BSI C5 and, largely, the still-unadopted EUCS — certifies practice: access controls, encryption, incident response, audit trails. BSI C5 does require disclosure of place of jurisdiction, but grants no immunity; customers still document residual CLOUD Act risk in their data protection impact assessments. EUCS’s proposed “High+” sovereignty tier was stripped from the draft. Gaia-X is not a security audit at all, and counts AWS, Azure and Google among its members. The second pile contains only SecNumCloud, which asks who ultimately controls the provider and what law can reach it.
Applied to AI, the arithmetic is sharp. The merged Cohere–Aleph Alpha sits at roughly 90% Canadian ownership, about four times over the cap, the analysis states. Mistral’s non-EU venture capital share has never been publicly tested — an open question from public information, not an assertion of non-compliance.
The 24% rule: why most “sovereign cloud” certifications don’t test sovereignty
ISO 27001. SOC 2. BSI C5. Gaia-X. Every badge real, audited, correctly displayed — and not one answers the question that decides the deal: can a foreign government compel your data? Exactly one European framework tests that. It does it with a number.
C5 does cover place of jurisdiction, data location & disclosure obligations. It requires you to declare which law reaches you. C5 tells you the gun is in the room.
Requires that no non-EU law can reach you at all — enforced by the ownership cap. SecNumCloud requires there be no gun. That’s the whole difference.
The proposed Cloud and AI Development Act (COM(2026) 502) would set four Union assurance levels for public procurement. Its own recitals concede the point: Cybersecurity Act certification “is not suited for addressing sovereignty concerns.” National labels won’t be banned — but a SecNumCloud provider would still need separate Article 17 recognition. If it passes, the badge on the vendor’s website stops mattering and the assurance level starts. Meanwhile ANSSI + BSI have jointly committed to common criteria specifying where failure is disqualifying.
Microsoft showed the gap better than any critic: May 2025 — encryption makes access “technically impossible.” One month later — cannot guarantee immunity from US authorities. Thirty days between the marketing and the law. SecNumCloud doesn’t ban American technology — it forces a change of control over it (hence S3NS = Thales+Google, Bleu = Capgemini+Orange on Azure). Is it also protectionism? Partly, yes — and that critique is exactly why EUCS High+ died. Both things are true. Don’t ask if a provider is “sovereign” — the word has been marketed into meaninglessness. Ask the arithmetic: who owns you, and what law reaches you? Then check whether the answer is above or below 24% — including for the European champions nobody has asked.
Why Ownership Caps Now Decide Cloud Deals
For buyers in regulated European industries, the finding reframes procurement: certifications prove practice; only one tests ownership. The analysis distills this into six due-diligence questions, starting with who the vendor’s ultimate parent is and what percentage of capital and voting rights non-EU entities hold — and warns that if a vendor cannot answer those two immediately, “the rest of the meeting is theatre.” It also cautions buyers to check the stack, not just the badge: sovereign infrastructure running beneath a non-EU-controlled SaaS layer is not a sovereign stack.
Microsoft illustrated the gap between marketing and law, the analysis notes: in May 2025 the company said encryption made access “technically impossible,” and about a month later acknowledged it could not guarantee immunity from US authorities. Thirty days separated the two positions — the clearest demonstration yet of why jurisdiction, not controls, settles the question.
European cloud security certification
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
How Europe’s Certification Landscape Split in Two
The sovereignty debate has been building for years. The US CLOUD Act allows American authorities to compel data from US-controlled companies regardless of where the data sits, which pushed European regulators toward structural answers. Germany’s BSI C5 has been the federal baseline since 2022 and covers jurisdiction disclosure. The EU-wide EUCS scheme was drafted with three security levels and mutual recognition, but its highest “High+” sovereignty tier was removed after criticism — including from the Cross-Border Data Forum — that it amounted to protectionism. The analysis concedes that charge against SecNumCloud is “partly, yes” true, adding that “both things are true”: the cap protects, and it discriminates. Meanwhile, November 2025 saw DORA critical third-party provider designations raise the stakes for financial-sector cloud buyers.
“Certifications prove practice. Only one of them tests ownership.”
— Thorsten Meyer AI, Insights AI Dispatch, July 16, 2026
AI data sovereignty certification
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Open Questions Around Mistral and Pending Rules
Several points remain unresolved. CADA is only a proposal and EUCS remains unadopted, so neither framework currently binds buyers. Mistral’s ownership structure — like that of other European champions — has never been publicly tested against the 24% threshold, and the analysis frames these as open questions drawn from public information, not findings of non-compliance. How strictly the cap should treat indirect or layered venture stakes is also untested ground, and the analysis is explicit that none of this constitutes legal advice.
cybersecurity compliance tools
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
CADA Vote and Joint EU Criteria Ahead
The next milestone is the proposed Cloud and AI Development Act (COM(2026) 502), which would set four Union assurance levels for public procurement. Its own recitals concede that Cybersecurity Act certification “is not suited for addressing sovereignty concerns.” National labels would not be banned, but even a SecNumCloud-qualified provider would need separate Article 17 recognition. If CADA passes, the badge on a vendor’s website stops mattering and the assurance level starts. In parallel, ANSSI and Germany’s BSI have jointly committed to common criteria specifying where failure is disqualifying — a sign the ownership question is moving from one French rule toward a European standard. The analysis closes with advice buyers can apply now: don’t ask whether a provider is “sovereign” — ask who owns you, and what law reaches you, then check whether the answer sits above or below 24%.
cloud security audit software
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Key Questions
What is the 24% rule in SecNumCloud?
It is an ownership cap, not a security control. Under France’s SecNumCloud qualification, capital and voting rights held by companies not based in the EU must not exceed 24% individually or 39% collectively — a threshold checkable directly from a provider’s cap table.
Which cloud providers currently hold SecNumCloud qualification?
Roughly nine to ten providers, including OVHcloud, Outscale, Scaleway, Numspot and Cloud Temple. AWS, Azure and Google Cloud cannot qualify natively and participate through joint ventures such as S3NS (Thales plus Google) and Bleu (Capgemini plus Orange).
Does SecNumCloud ban American technology?
No. According to the analysis, it does not ban US technology — it forces a change of control over it, which is why the American hyperscalers enter the qualified market through European-controlled joint ventures rather than directly.
What would the Cloud and AI Development Act (CADA) change?
CADA would introduce four Union assurance levels for public procurement, shifting attention from vendor badges to assurance levels. National labels like SecNumCloud would not be banned, but providers would still need separate Article 17 recognition. CADA remains a proposal and is not yet law.
Is the 24% ownership cap a form of protectionism?
Partly, the analysis concedes — and says both things are true: the cap addresses genuine jurisdictional risk while also favoring European providers. That same critique is exactly why the EUCS “High+” sovereignty tier was stripped from the draft scheme.
Source: Thorsten Meyer AI