EU’s digital quest: Cybersecurity governance and sovereignty at a stake?

EU’s digital quest: Cybersecurity governance and sovereignty at a stake?

In its digital quest, the EU stands at a crossroads, employing the European Cybersecurity Certification Scheme (EUCS) to balance cybersecurity, autonomy, and global aspirations while probing the efficiency of governance and sovereignty, writes Francesco Cappelletti.

Francesco Cappelletti works as a Policy and Research Officer at the European Liberal Forum (ELF) and is currently a PhD candidate in Cybersecurity Law at Vrije Universiteit Brussel.

Securing EU data globally

Connecting the unconnected’ offers both opportunities and risks. The EU has significantly advanced in cybersecurity, with initiatives like the revised NIS Directive, the Cybersecurity Act and the upcoming Cyber Resilience Act. These aim to enhance cybersecurity, harmonise standards, and establish an EU-wide certification framework.

Moreover, ENISA is drafting a new EUCS. This scheme aims to ensure secure data flow across the EU, while safeguarding the security of cloud systems for the Digital Single Market. The proposed Cloud Service Scheme includes sovereignty requirements to protect EU data from non-EU laws, such as data localisation and corporate control, restrictions on foreign ownership, the location of headquarters, and local staffing.

EU’s ‘digital sovereignty’ aims to boost competitiveness and innovation in the digital single market, offering European digital industries equal opportunities to compete with major tech firms. This requires balancing independent decision-making, strategic global collaborations, and aligning data control with European standards.

However, the approach has been ..

Support the originator by clicking the read the rest link below.