ABSTRACT The digital transformation of the public sector is a crucial objective for the European Commission and member states. Concerns arise due to US and Chinese tech giants’ dominance in cloud computing, impacting sovereignty, privacy, and security. Some European member states established restrictions on non-EU Cloud Service Providers (CSPs) to ensure compliance with European data protection laws. Investigating how states respond to growingly infrastructuralized non-EU public CSPs is crucial. This paper scrutinizes the Italian Cloud Strategy in the context of the public sector’s migration to the cloud. Critical and interpretive policy analysis tools are employed to examine the Strategy’s underlying problematizations and prevailing discourses. The paper argues that while the Italian Strategy recognizes the trade-off between pragmatism and sovereignty, it lacks comprehensive solutions. The unquestioned dominance of non-EU public CSPs, symbolic proposals, and limitations in data classification call for further considerations to strike a balance between pragmatism and safeguarding digital sovereignty.
Read full abstract