Summary
Cloud in Europe is shifting from scale and flexibility toward control, compliance and predictability. This is not a trend. It reflects a broader shift in how infrastructure is understood — from a technical layer to a strategic concern.A structural shift
Cloud in Europe is entering a different phase.
Not gradually. Structurally.
And not because the technology has changed overnight, but because the context around it has.
A recent report from Information Services Group (ISG) confirms something that has already been visible for a while: cloud decisions are no longer driven primarily by scalability or cost. They are increasingly shaped by control, compliance and long-term predictability.
That changes what “good infrastructure” looks like.
According to ISG, the Nordic region has entered what they describe as a defining phase, where cloud is no longer treated as an isolated infrastructure choice but as part of a broader operating model. Anthony Drake, Partner and President of ISG EMEA, highlights the region’s increasing strategic importance in the European cloud market, while Meenakshi Srivastava, Lead Analyst for ISG Provider Lens Research, points to a shift toward compliance-driven, AI-native multicloud models.
This shift is also visible at a policy level, with the European Commission actively investing in sovereign cloud capabilities to strengthen control over critical digital infrastructure and reduce structural dependency on non-European providers.
What is actually changing in European cloud strategy?
Cloud in Europe is no longer evaluated purely in terms of scalability or cost.
It is increasingly assessed based on control, compliance, jurisdiction and long-term predictability.
In practice, this means that organizations are looking beyond where data is stored. They are evaluating who controls the infrastructure, how the control plane is governed, which legal frameworks apply, and how identity, access and cryptographic systems are managed.
This reflects a broader shift in how sovereignty is defined. It is no longer about location alone, but about enforceable control over how systems are operated, governed and recovered.
Auditability, transparency and the ability to operate independently under disruption are becoming baseline expectations.
In other words, cloud is moving from an operational decision to a strategic one.
This did not start with the report
From my perspective, this shift did not start with the report.
I remember being skeptical already around 2020 — not about cloud itself, but about how it was being positioned. Too much of the conversation assumed that abstraction alone was enough. That if you removed friction, everything else would follow.
That assumption started to feel incomplete.
After 2022, it became impossible to ignore.
The invasion of Ukraine made something very concrete: infrastructure is not neutral.
Control, dependency and jurisdiction are not theoretical concerns. They can become real constraints overnight.
When access, data flows or platforms can be influenced by geopolitical decisions, cloud is no longer just a technical model. It becomes part of how societies and organizations retain control over their own operations.
That changed how many of us think about infrastructure — permanently.
That realization was not entirely new.
Years ago, I wrote about how Norway’s external connectivity — both physical and logical — represents a structural dependency (see article). At the time, it was often framed as resilience or redundancy.
This perspective has also been part of a broader discussion across the Nordics.
In previous interviews, including coverage in IT-Kanalen, I pointed to how geopolitical uncertainty — particularly related to US regulation and elections — can have direct implications for European data control and cloud strategy.
But dependency does not disappear because it is distributed.
It just becomes harder to see.
Much of Europe’s cloud infrastructure still depends, directly or indirectly, on systems, providers and legal frameworks outside its own jurisdiction — particularly in the US.
That does not make those systems unreliable.
But it does mean that ultimate control — including legal authority, access pathways and operational dependency — is not always aligned with where systems appear to run.
We also summarized parts of this shift more recently in a broader European context in the WAYSCloud newsroom.
Building with that assumption
That is part of the reason we built WAYSCloud the way we did.
We started with a Nordic focus, but with a clear understanding that this would expand into a broader European context. The goal was not just to offer infrastructure, but to build something that aligns with how European organizations actually need to operate — across jurisdictions, with clear boundaries and with fewer hidden dependencies.
At the time, that position was not always obvious.
Today, it is increasingly expected.
A broader awareness shift
What has changed recently is not only how organizations think, but how widely this thinking is shared.
During a recent visit, a colleague in our Danish team mentioned that sovereignty had become something discussed around the dinner table at home. Not as a technical concept, but as something tangible — tied to real-world concerns, including geopolitical tension and questions around control.
That is a different level of awareness.
And it reflects something we are seeing more broadly across Europe. Questions about infrastructure are no longer confined to technical teams. They are becoming part of how organizations — and individuals — think about dependency, risk and control.
The reality of migration
At the same time, there is a part of this shift that is often underplayed.
Moving toward more controlled, sovereign infrastructure is one thing. Getting there is something else entirely.
Across a number of investor conversations I have had, one question has come up repeatedly. One in particular stood out:
“This all makes sense. You are clearly aligned with where things are heading. But what about migration?”
It is a fair question.
Because while the direction is becoming clearer, the path is not.
Cloud ecosystems have, over time, become deeply interconnected — not just at the infrastructure level, but across APIs, identity systems, data flows and operational tooling.
This complexity is amplified by modern multicloud patterns, where workloads, cost models and operations are distributed across providers and regions.
Why is cloud migration still so difficult?
Because modern cloud systems are not isolated.
They are deeply interconnected across infrastructure, identity, APIs and operational tooling, making dependency harder to unwind than many expect.
To be direct: this is not a solved problem.
And that is something we have had to be honest about ourselves.
Even internally, we have not yet achieved fully seamless migration.
From abstraction to control
For a long time, cloud was framed as abstraction. Move faster. Think less about what happens underneath. Let someone else handle it.
That worked when systems were less critical.
It does not work when infrastructure becomes part of compliance, security posture and long-term strategic control.
Abstraction without understanding is not simplification.
It is loss of control.
Cloud didn’t remove dependency.
It redistributed it.
Closing
Europe is one of the clearest examples of where this is heading.
The Nordics may be early, but this is not a regional shift. It is broader, and it is accelerating.
From where I stand, this is no longer about where cloud is going.
It is about how long organizations can afford to ignore what they are actually building on.
Regulation, AI adoption and system complexity are increasing at the same time.
That combination removes ambiguity.
This is not a temporary shift.
It is a structural one.
And once you see it, it is difficult to look at infrastructure the same way again.
Source: Based on the January 2026 ISG Provider Lens research update distributed via Business Wire (NTB), including statements from Anthony Drake (ISG EMEA) and Meenakshi Srivastava (ISG Provider Lens Research).