Tag: Data Sovereignty

  • Microsoft Sovereign Cloud Solutions July 2025 Update

    Microsoft Sovereign Cloud Solutions July 2025 Update

    Microsoft Sovereign Cloud Solutions July 2025 Update: Your Cloud, Your Rules

    Back in April, I shared my perspective on Microsoft’s Sovereign Cloud strategy and the four “flavors” of control available to European organizations. Since then, things have moved fast.

    On June 16, 2025, Microsoft announced the next evolution: a suite of comprehensive sovereign solutions designed to give European enterprises more control, more choice, and more flexibility across both public and private infrastructure.

    As “Mr. Microsoft,” I see this as more than a technical update. It’s a game-changer.

    Let’s dive in.

    Recap: The Four Flavors of Cloud Control

    In case you missed my April post, here’s a quick refresher on Microsoft’s sovereignty model:

    • Microsoft Public Cloud – The global, highly scalable Azure platform.
    • Microsoft Cloud for Sovereignty – Full control over encryption keys, managed and operated under European law.
    • National Partner Clouds – Bleu in France and Delos Cloud in Germany—locally operated and partner-run sovereign environments.
    • Azure Local – Azure services deployed directly on your own hardware, within your own datacenter.

    These four flavors have become the foundation of Europe’s sovereign cloud story.

    Spotlight: Microsoft 365 Local

    Here’s where things get really interesting.

    With Microsoft 365 Local, Microsoft brings its productivity powerhouses—Exchange, SharePoint, Teams, and more—into your hands like never before.

    Forget simply choosing a regional datacenter. With Microsoft 365 Local, you can now deploy your productivity workloads entirely within your own datacenter, a partner-operated sovereign cloud and even in an air-gapped, disconnected environment

    And yes, it’s real.

    What does this mean?

    • Full deployment control: You decide where your workloads live and how they run.
    • Simplified management: Azure Local tooling and Microsoft 365 now work together in a unified framework.
    • Enterprise-grade resilience: Ideal for critical sectors like government, healthcare, and defense

    In short:
    Microsoft 365 Local empowers your organization to maintain full sovereignty without losing modern productivity tools.

    It’s Microsoft 365 on your terms.

    What Else Is New? Building a Complete Sovereign Portfolio

    Beyond Microsoft 365 Local, Microsoft’s June update introduced three new pillars of control and security across the entire Sovereign Cloud ecosystem:

    🛡️ Data Guardian

    • Extends Microsoft’s EU Data Boundary.
    • Ensures only European personnel can approve or monitor remote access to your workloads.
    • Access requests? Logged in a tamper-evident ledger for full auditability.

    🔑 External Key Management

    • Bring Your Own Key (BYOK)—now at hyperscale.
    • Manage encryption keys from your own HSM (on-premises or third-party).
    • Seamlessly integrated with Azure Managed HSM, supporting vendors like Thales, Utimaco, and Futurex.

    📊 Regulated Environment Management

    • One console. Total control.
    • Monitor, configure, and govern all your sovereign features—Data Guardian policies, access logs, and compliance controls—from a single pane of glass.

    Meanwhile, Microsoft’s National Partner Clouds remain key pillars:

    • Bleu (France): Built with Orange and Capgemini, meeting SecNumCloud standards.
    • Delos Cloud (Germany): Operated by SAP, aligned with German government platform requirements.

    To complete the ecosystem, Microsoft is introducing a Sovereign Cloud Specialization for partners, ensuring certified local experts can design, deploy, and operate these complex sovereign architectures.

    Read the full anouncement from Microsoft here.

    Choosing Your Sovereign Path

    Let’s talk strategy.

    Microsoft’s sovereign cloud model now offers the broadest choice in the industry, spanning:

    • Sovereign Public Cloud – Azure, Microsoft 365, Security, and Power Platform services, operated under European law.
    • Sovereign Private Cloud – Microsoft 365 Local and Azure Local, running in your datacenter or air-gapped environments.
    • National Partner Clouds – Partner-operated sovereign environments for France and Germany.

    Whether your focus is:

    • Full control over encryption,
    • Restricting data access to European personnel only,
    • Operating workloads in fully isolated, air-gapped infrastructures,

    you now have the flexibility to build sovereignty your way.

    Why Sovereignty Isn’t Just About Compliance

    Let’s be clear:
    Sovereignty is no longer a checkbox exercise.

    It’s about:

    • Strategic alignment to national regulations and security standards,
    • Mitigating geopolitical risks,
    • Controlling operational dependencies,
    • And creating resilience that supports your long-term mission.

    For governments, critical infrastructure providers, healthcare organizations, and financial services, the stakes couldn’t be higher.

    Microsoft’s expanded Sovereign Cloud solutions finally allow you to pursue digital transformation without surrendering control.

    Final Thoughts from Mr. Microsoft

    For years, data sovereignty was seen as a blocker. Something that slowed innovation.

    Not anymore.

    With Microsoft 365 Local and the expanded sovereign portfolio, Microsoft has rewritten the rules. You no longer need to choose between modern cloud functionality and operational sovereignty.

    It’s now possible to have both.

    As “Mr. Microsoft”, I see this as a defining moment that is not just for compliance teams but for IT leaders, architects, and business strategists across Europe.

    The cloud just became your cloud.

    Stay clever. Stay Sovereign.
    Your Mr. Microsoft,
    Uwe Zabel

    🚀 Curious about Microsoft 365 Local or Sovereign Cloud solutions? Follow my journey on zabu.cloud, where cloud, compliance, and business strategy converge. Or ping me directly because building the future works better as a team.

  • Microsoft Cloud for Sovereignty

    Microsoft Cloud for Sovereignty

    Microsoft Cloud for Sovereignty

    How much control do you need?

    Let me start with a small confession:

    I’m not particularly well-organized. At least that’s how it feels to me most of the time. This becomes especially apparent right before I’m heading off for vacation — like right now, as I’m preparing to leave this afternoon for a well-deserved Easter family vacation. 🐣

    Two weeks of no work emails, no Teams calls, and (hopefully!) no sudden escalations. That’s the goal anyway. But as anyone who’s been in my shoes knows, taking time off isn’t just about setting an out-of-office message and walking away. There’s a whole process that needs to happen behind the scenes. For me, the last days before a break are usually packed — making sure everything is updated, tasks are clear, responsibilities are properly delegated, and nothing critical gets stuck during my absence.

    And yes, that means these last couple of days at work get noticeably longer — and the coffee consumption inevitably higher. ☕😅

    Honestly, I’m still searching for the perfect formula here. What’s your experience? Do you have a secret best practice to optimize things before you leave for a vacation? I’d love to hear how you handle it — share your insights in the comments below!

    Speaking of control — let’s talk about Data Sovereignty again!

    On February 3rd, I shared a post here titled EU Data Boundary — Microsoft’s Next Big Step for European Data Sovereignty here.

    Back in February, I talked about the concept of the EU Data Boundary for Microsoft Azure and Microsoft 365, focusing mainly on the challenges and opportunities organizations face with data residency and sovereignty within the EU. But when we discuss controlling data, especially sensitive or mission-critical data, there’s actually even more on the menu from Microsoft than you might realize.

    So today, let’s take a deeper dive into Microsoft’s broader Digital Sovereignty Portfolio and unpack your options:

    Microsoft’s Four Flavors of Cloud Control

    Microsoft offers different flavors of cloud solutions, each tailored for specific business needs regarding control and sovereignty over your data:

    1️⃣ Microsoft Public Cloud (Azure)

    This is the go-to, standard version most businesses rely on. It provides global scalability, comprehensive features, robust security, and compliance certifications right out of the box. For most workloads, it’s the ideal balance between flexibility, cost-efficiency, and convenience.

    If your workloads aren’t subject to very restrictive data sovereignty or compliance rules, this is usually your best choice.

    2️⃣ Microsoft Cloud for Sovereignty

    This version steps up the game, especially designed for organizations needing more stringent data protection and compliance. Microsoft Cloud for Sovereignty allows you to manage your own encryption keys fully, meaning you retain absolute control over your data security. This solution is tailored specifically for governments, regulated industries, and clients that operate under strict security and sovereignty standards.

    If you absolutely must hold the keys (literally!) and need an enhanced layer of control, this version fits perfectly.

    3️⃣Sovereign Clouds with Microsoft Technology (Bleu, Delos)

    Starting in 2026, Europe will see the launch of two major sovereign cloud initiatives powered by Microsoft technology:

    • Bleu in France 🇫🇷
    • Delos in Germany 🇩🇪

    These clouds will be operated locally by trusted partners, ensuring full compliance with national regulations and the highest possible standards of digital sovereignty and data privacy. This setup ensures data stays completely within the country and under local jurisdiction, while still benefiting from proven Microsoft technology.

    Important: Both Bleu and Delos clouds are specifically designed for government entities and companies closely affiliated or tied to governmental operations. If you belong to these groups, these solutions provide an unmatched combination of national sovereignty and technological excellence.

    If your organization faces especially rigorous national data protection requirements and governmental affiliation, these localized clouds will be your safest bet.

    4️⃣ Azure Local – (Previously Azure Stack Hub, now on any hardware)

    Azure Local takes it even further. It provides Microsoft Azure cloud capabilities deployed directly on-premises, inside your own data center, using practically any hardware you prefer. This is an evolution beyond Azure Stack Hub, offering far greater flexibility. It gives you complete physical and digital control, as the cloud infrastructure runs under your own roof.

    If your workloads require total isolation, compliance under extremely restrictive conditions, or you simply prefer the physical proximity and direct control, Azure Local is your ideal solution.

    Choosing the Right Level of Control — What’s Best for You?

    Data sovereignty isn’t a one-size-fits-all scenario. Your organization’s ideal solution depends on multiple factors, including regulatory requirements, industry standards, compliance needs, your own security policies, and frankly, your comfort level. The good news is: Microsoft provides choices that match virtually every scenario.

    Reflecting on these choices, it becomes clear that data sovereignty isn’t just about technology — it’s about strategic alignment with your business, governance, and risk management goals. Having the right level of control gives you the confidence and flexibility to innovate safely, securely, and efficiently.

    Learn more about Microsofts Cloud for Sovereignty here.

    Wrapping Up

    Control & Sovereignty Matters! Whether you’re packing your bags for a vacation (like I am right now 🧳) or determining the right strategy for managing your critical data assets — preparation, clarity, and a clear understanding of the level of control you actually need are key to your peace of mind.

    To circle back — let me know how you handle your preparation before you unplug for a break. And if you’d like to discuss any of these cloud sovereignty topics in more detail, just reach out or drop a comment below. I’m always happy to dive deeper into these fascinating topics!

    Wishing you relaxing breaks, secure data, and the perfect level of control — whatever that means for you! 😉

    Stay awesome!

    Your Mr. Microsoft