Airbus is preparing to migrate its most sensitive workloads to a European sovereign cloud, signaling a shift in how global corporations are approaching digital security and data sovereignty. The aerospace manufacturer intends to move key on-premises applications, including ERP systems, manufacturing execution systems, CRM platforms, and product lifecycle management tools, to a platform under European control.
“I need a sovereign cloud because part of the information is extremely sensitive from a national and European perspective,” said Catherine Jestin, Airbus executive vice president of digital. “We want to ensure this information remains under European control.”
The move is partly driven by software innovation. Vendors like SAP are now developing new features exclusively for cloud platforms, encouraging large organizations to migrate from legacy systems to modern cloud solutions. Airbus plans to launch a request for proposals in early January, with a decision expected before summer. The contract is expected to exceed €50 million and extend up to ten years, emphasizing long-term stability and price predictability.
Geopolitical pressures are a major factor. European companies are increasingly cautious about US cloud providers due to the CLOUD Act, which allows American authorities to access data stored abroad. Microsoft, AWS, and Google have developed solutions to address these concerns, but European organizations still fear potential exposure to extraterritorial regulations.
Jestin is waiting for clarification from European regulators on whether Airbus would truly be insulated from foreign laws and whether services could be interrupted in a crisis. Beyond US-related concerns, she also questions whether European cloud providers have sufficient scale to handle Airbus’s mission-critical workloads.
“This puts pressure on European providers to collaborate,” Jestin said. “Whether they can meet the requirements within our timeframe remains uncertain. Today, I would estimate an 80/20 chance of finding a solution.”
For everyday organizations, the Airbus case illustrates a larger trend: as digital operations become central to business strategy, sovereignty and security are increasingly critical. Companies must carefully evaluate where data is stored, how cloud providers operate, and what regulations apply, particularly when handling sensitive or mission-critical information.
For inquiries or story tips, email hello@laterstack.com.
Related Laterstack Cybersecurity Stories
Is Your Vibrator Spying on You? Understanding App-Connected Sex Toy Data
Apple and Google Roll Out Emergency Patches After Active Zero-Day Exploits
Credit Check Company 700Credit Exposes Personal Data of Over 5 Million Americans
Home Depot Exposed Internal Systems for a Year After Employee Leaked GitHub Token