惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

MyScale Blog
MyScale Blog
Microsoft Azure Blog
Microsoft Azure Blog
H
Help Net Security
N
News and Events Feed by Topic
Recent Announcements
Recent Announcements
D
Docker
M
MIT News - Artificial intelligence
L
LangChain Blog
I
InfoQ
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
P
Proofpoint News Feed
博客园_首页
MongoDB | Blog
MongoDB | Blog
美团技术团队
S
Schneier on Security
G
GRAHAM CLULEY
月光博客
月光博客
有赞技术团队
有赞技术团队
Vercel News
Vercel News
Scott Helme
Scott Helme
P
Privacy International News Feed
Last Week in AI
Last Week in AI
Recorded Future
Recorded Future
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
The Cloudflare Blog
Attack and Defense Labs
Attack and Defense Labs
Google Online Security Blog
Google Online Security Blog
Simon Willison's Weblog
Simon Willison's Weblog
量子位
S
Security @ Cisco Blogs
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
V
Visual Studio Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
NISL@THU
NISL@THU
N
Netflix TechBlog - Medium
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Spread Privacy
Spread Privacy
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
小众软件
小众软件
罗磊的独立博客
Security Archives - TechRepublic
Security Archives - TechRepublic
T
Threatpost
L
Lohrmann on Cybersecurity
www.infosecurity-magazine.com
www.infosecurity-magazine.com
S
Security Affairs
Cloudbric
Cloudbric
爱范儿
爱范儿
H
Heimdal Security Blog
PCI Perspectives
PCI Perspectives

Security & Identity

Cloud CISO Perspectives: How AI leverages deep context as the defender’s advantage | Google Cloud Blog Introducing k8s-aibom on GKE for automated AI bills of materials | Google Cloud Blog Contributing to U.K. financial sector resilience as a critical third party | Google Cloud Blog Meet the 33 cybersecurity startups joining the Gemini Startup Forum | Google Cloud Blog Drive proactive security, prioritize risks with Google Threat Intelligence and Wiz ASM | Google Cloud Blog Shift into high gear with agents: Securing the software-defined vehicle | Google Cloud Blog New IDC study: How Mandiant transforms security into a competitive advantage | Google Cloud Blog Google Cloud confirmed to offer a safer choice for EU public sector organizations with Dutch DPIA approval | Google Cloud Blog Cloud CISO Perspectives: How Google Cloud Security uses AI internally | Google Cloud Blog Securing agentic AI: What's new in VPC Service Controls | Google Cloud Blog Verifiable trust in the AI era: What’s new in Confidential Computing | Google Cloud Blog Choice, compliance, and collaboration: Europe’s path to open digital sovereignty | Google Cloud Blog Driving the UK’s next chapter: From AI potential to agentic reality | Google Cloud Blog Google named a Leader in IDC MarketScape SIEM 2026 Vendor Assessment | Google Cloud Blog Cloud CISO Perspectives: The 4 lessons that guided AI Threat Defense | Google Cloud Blog Powering the next era of Confidential AI Detecting and containing AI-powered threats with Google Security Operations agents Cloud CISO Perspectives: How to build an AI-ready security program for the public sector Introducing Google AI Threat Defense to help you outpace the adversary Cloud CISO Perspectives: How Google + Wiz changes multicloud strategy for CISOs Why cloud infrastructure is the foundation for digital health in 2026 Beyond source code: The files AI coding agents trust — and attackers exploit What's new in IAM: Security, governance, and runtime defense Google named a Leader in the 2026 Gartner Magic Quadrant for Cyberthreat Intelligence Technologies Introducing Agent Gateway ISV ecosystem for security and governance Cloud CISO Perspectives: At Next ‘26, why we’re multicloud and multi-AI Next ‘26: Redefining security for the AI era with Google Cloud and Wiz | Google Cloud Blog Introducing Google Cloud Fraud Defense, the next evolution of reCAPTCHA | Google Cloud Blog Next ‘26: Announcing new partner-supported workflows for Google Security Operations | Google Cloud Blog Cloud CISO Perspectives: How CISOs can pursue technical and cultural resilience (Q&A) | Google Cloud Blog Essential AI and cloud security now on by default Securing AI inference on GKE with Model Armor A Leader in Forrester Wave Sovereign Cloud Platform 2026 See beyond the IP and secure URLs with Google Cloud NGFW Cloud CISO Perspectives: RSAC: AI, security, and the workforce of the future How to build AI agents with Google-managed MCP servers Bringing dark web intelligence into the AI era RSAC ’26: Supercharging agentic AI defense with frontline threat intelligence IAP integration with Cloud Run Why context is the missing link in AI data security Welcoming Wiz to Google Cloud: Redefining security for the AI era Cloud CISO Perspectives: New Threat Horizons report highlights current cloud threats Google named a Leader in IDC MarketScape: U.S. SLG Professional Security Services Introducing the Google Cloud recommended security checklist Cloud CISO Perspectives: How Google approaches critical security topics, from fundamentals to AI Sovereignty and European competitiveness: A partnership-led approach to AI growth Cloud CISO Perspectives: New AI threats report: Distillation, experimentation, and integration Introducing Single-tenant Cloud HSM for more data encryption control Cloud CISO Perspectives: 5 top CISO priorities in 2026
Delivering a secure, open, and sovereign digital world
Sachin Gupta, Jai Haridas, Jai Haridas · 2026-02-07 · via Security & Identity

The global conversation about our digital future goes beyond technology; it’s about architecting a prosperous, secure, and resilient economy where the digital services we rely on every day — from banking to healthcare to public administration — are built on a foundation of trust and operate according to local regulations.

At Google Cloud, we believe that achieving this vision shouldn't require compromises. That’s why we designed our Sovereign Cloud portfolio — consisting of Google Cloud Data Boundary, Google Cloud Dedicated, and Google Cloud Air-Gapped — to provide the industry's most comprehensive and flexible options to meet your unique needs. We believe that you can drive innovation without compromising functionality.

Today, we are expanding on that promise for governments, businesses, and citizens across the world. Our commitment is built on five key pillars: investing in local economies through infrastructure and workforce development; enabling digital resilience via rigorous technical and legal controls; empowering customers to control access to their unencrypted data; ensuring an open digital future by supporting open-source software and eliminating lock-in; and actively supporting global cybersecurity and regulatory frameworks.

https://storage.googleapis.com/gweb-cloudblog-publish/images/Sovereign_Cloud_Commitments___Feb_2026.max-1000x1000.jpg

Google Cloud's Sovereign Cloud commitments.

Foundation of economic growth

Digital sovereignty is fueled by cloud services, yet it is equally dependent on a foundational commitment to the nations we serve. We demonstrate this by fostering local innovation, creating jobs, and having local entities operating under local law across many parts of the world.

Over the past few months, we have accelerated this commitment worldwide:

Assurance of operational continuity

Society relies on the continuous operation of the services provided by Google Cloud’s customers. We prioritize security and digital sovereignty to keep these vital systems running and protected from external threats. Google Cloud complies with key EU cybersecurity regulations, such as NIS2 and DORA. We support customer compliance efforts with robust contractual commitments and additional security offerings, including Google Security Operations and Mandiant Consulting.

We back this technical resilience with clear legal protocols: Should Google receive an order from a national government to suspend or terminate the provision of Google Cloud’s operations provided from any country, we will seek to limit, modify, or object to any such order using all available legal avenues. As part of our commitment to partnering with local service providers to build local solutions, customers don’t have to contract with Google to take advantage of these offerings.

Additionally, in the event that Google becomes unable to operate Google Cloud, where Google Cloud could otherwise be operated by a third party, Google will make arrangements to allow a qualified third party to take on this operational role.

And finally, Google will allow qualified, locally-based entities that are subject to local law and whose board members are obligated to act in the best interest of those entities to utilize Google’s code to provision Google Cloud’s products, services, and solutions in their respective territories.

The offerings in our Sovereign Cloud portfolio also help you protect your cloud environments. Google Cloud offers a portfolio of survivable solutions that meet a broad range of requirements. These are available today with our Google Cloud Air-Gapped and Google Cloud Dedicated offerings.

Google Cloud Air-Gapped doesn’t require connectivity to Google Cloud or the public internet to manage infrastructure, services, APIs, and tooling. Customers may choose to have a third-party partner (instead of Google) serve as the infrastructure operator for Google Cloud Air-Gapped. It is built on industry-leading open-source components and designed to remain disconnected in perpetuity. Because there is no physical connection, Google cannot remotely access or shut down customer workloads running in Google Cloud Air-Gapped.

Around the world, organizations including NATO Communication and Information Agency, the German Armed Forces, the U.K. Ministry of Defence, Singapore government agencies, and the U.S. Air Force have selected Google Cloud Air-Gapped for their most secure workloads.

Similarly, Google Cloud Dedicated is designed so that the partner fully controls the environment, including the ability to monitor, and, in exceptional circumstances, block software updates, and revert changes made by Google. Google Cloud Dedicated performs a key rotation after the disconnect and Google has no access to this dedicated instance. The solution is designed to prevent Google from any remote access or the ability to shut down customer workloads running in Dedicated instances, and so that the partner can continue to operate for up to 12 months in the unlikely scenario that their Dedicated instance connection to Google is severed.

For example, in France, S3NS offers Premi3NS built on Google Cloud Dedicated. S3NS is a standalone entity and PREMI3NS has achieved the SecNumCloud 3.2 qualification from the French National Agency for the Security of Information Systems (ANSSI). Recognized as the most demanding sovereignty, security, and resilience standard in Europe, and one of the most demanding in the world, this certification confirms that the platform meets the highest protection requirements and offers full, auditable control over access to customer data for our local partner. Highly-regulated customers such as Thales, EDF, MGEN, and Qonto are already building on Premi3NS to accelerate their digital transformation.

Your data, your control

At its core, digital sovereignty is about individuals and their data. Our commitment to you is that you control your information and data.

We were the first major cloud service provider to eliminate transfer fees and introduced tools to make such transfers easier. We continue to proactively advocate against restrictive cloud licensing policies that lock in cloud customers, harm economic growth, and stifle innovation.

We are the only major cloud provider that enables customers to deny access to their unencrypted data for any reason. We offer the ability to require approval before specific administrative activity occurs along with a mechanism for customers to ensure their approvals are legitimate.

Capabilities like these help ensure that customers are the ultimate arbiters of access to their data on Google Cloud.

Our External Key Management solution enables customers to encrypt their data at rest with keys stored outside our cloud. It requires detailed justifications each time access to their keys is requested. Google Cloud will challenge overbroad and unlawful data requests, and seek appropriate judicial remedies.

We are fully committed to ensuring that legal requests are subject to transparency, and report these out to the public through our Transparency Report.

Sovereign Cloud from Google provides customers with controls that are designed to facilitate the processing and storage of customer data in a given region, protected by local laws. This extends to Google Workspace, where client-side encryption ensures that your collaboration data is indecipherable to Google, keeping your emails, documents, and meetings strictly under your control.

We recognize that data residency alone often isn't enough — you need assurance that the actual machine-learning processing occurs in your required jurisdiction. We recently expanded our local ML processing commitments for select Gemini models to Australia, Brazil, Canada, France, Germany, India, Japan, Singapore, South Korea, and the U.K. We are continuously expanding our data residency commitments across the globe.

Innovating without limits

A sovereign digital future should be grounded in choice, encouraging the freedom to use the best tools without being tied to a single vendor. Many Google solutions you have come to love, such as Android, Chrome, Kubernetes, and Gemma, are built on open technology, giving developers, businesses, and governments common tools that work everywhere. We are fundamentally committed to an open digital world, building on open-source technology.

We provide unmatched choice through Vertex AI, our AI development platform for building and using generative AI. Vertex AI enables you to develop, tune, and deploy your own models, or you can use and localize Google’s leading models, like Gemini and Gemma. We also provide tools so you can build custom agents, or you can use Google’s pre-built agents to accelerate your time to market.

Get started today

Our commitments to verifiable control, assured resilience, local investments, and open choice are our pledge to help build a digital future that is innovative, secure, and truly sovereign. To learn more about our digital sovereignty solutions, visit our website or reach out to our digital sovereignty experts.

Posted in