Sovereignty is not optional. It's a design choice — made on day one.

Data sovereignty

Data falls under the national or European law of your jurisdiction, regardless of physical location. No foreign government can compel access through a back door — and you can prove it.

Operational sovereignty

Full transparency and control over how the cloud provider operates and accesses your environment. Operators are vetted, located in-region, and bound by local law. Access logs are auditable.

Technological sovereignty

Freedom to make technical choices without locking yourself into one vendor. Open standards, portable workloads, and a credible exit path that lets your platform outlive any single supplier — including us.

Sovereign Public Cloud

Azure regions in the European Union, with data and operations under European law. Indentia hosts the SaaS tiers here when our customers want Europe-only deployment without the cost of a dedicated cluster.

• · Data stays in Europe, under European law
• · Data Guardian: operations and access controlled by Europeans
• · Sovereign controls for policy enforcement
• · Runs on existing EU datacenter regions — no migration

Sovereign Private Cloud

Azure Local + Microsoft 365 Local: a hybrid or fully disconnected Azure stack running on your hardware, in your facility, under your operational control. Indentia deploys here for customers that need cloud-style operations on-premises.

• · Hybrid or disconnected at your location
• · Validated architecture and partner ecosystem
• · Cloud-native primitives without external connectivity
• · Same Indentia control plane as the public-cloud SaaS tiers

National Partner Clouds

For governments and critical-infrastructure operators where even an Azure-operated EU region is not enough. Microsoft-licensed technology run end-to-end by a government-approved local operator — independent from Microsoft.

• · Clouds in Germany (Delos Cloud) and France (Bleu)
• · Government-approved local operator independent from Microsoft
• · Local ownership with isolated infrastructure
• · For workloads with the strictest sovereignty requirements

EU Data Act

In force from September 2025. Requires cloud providers to enable straightforward migration between providers, weakening lock-in and strengthening exit rights.

GDPR / AVG

Personal-data protection across the EEA. Sovereign cloud makes the audit story — who accessed what, where, under which jurisdiction — directly evidenceable.

NIS2

Cybersecurity baseline for essential and important entities, including critical infrastructure and digital service providers. Sovereign operational control simplifies incident reporting and supply-chain assurance.

DORA

Digital Operational Resilience Act for the financial sector. Concentration risk on a single non-EU cloud provider is now a regulator concern; sovereign options reduce it.

EUCS

European Cybersecurity Certification Scheme for cloud services. Helps shortlist providers whose operations and infrastructure meet defined sovereignty assurance levels.

Multi-tenant SaaS on Sovereign Public Cloud

Our shared SaaS runs on EU Azure regions with sovereign controls, alongside Scaleway. Same Indentia control plane, but the underlying compute and data plane sit under European law.

Single-tenant SaaS on Hetzner or Azure EU

For customers who reject shared compute, we provision a dedicated tenant on a sovereign-friendly hyperscaler — Hetzner (German-owned) or Azure EU with Sovereign Public Cloud controls.

Self-hosted on Azure Local

When operations must stay on your own metal but you want Azure-style tooling, Sovereign Private Cloud (Azure Local + M365 Local) runs the platform under your operational control. Indentia ships the same GitOps bundles that work on OpenShift.

Self-hosted air-gapped

No cloud involvement at all — Indentia on your own OpenShift cluster with no outbound connectivity, a mirrored registry, and offline model artefacts. The strongest sovereignty position the platform supports.