Forgot your password?
typodupeerror
Cloud EU Microsoft

EU To Soon Classify AWS and Azure As Gatekeepers Under DSA (heise.de) 39

The European Commission is reportedly preparing to provisionally classify Amazon Web Services and Microsoft Azure as "gatekeepers" under the Digital Markets Act, bringing cloud infrastructure under the law's stricter competition rules for the first time. The designation could require greater interoperability and data portability, making it easier for customers to switch providers, with a final decision expected by the end of 2026. Heise reports: This investigation began in November 2025, when the EU targeted the cloud power of US tech giants. The trigger was outages in cloud services with sometimes significant impacts on other internet services. Shortly before, an approximately 15-hour outage of the AWS cloud in the US meant that not only Amazon's own streaming services but also Atlassian, Docker, Epic Games, and the Signal messenger were unavailable or severely restricted. Shortly thereafter, Microsoft Azure also struggled with an outage, preventing air passengers from checking in and interrupting votes in the Scottish Parliament.

As a result, European antitrust authorities have also scrutinized cloud services under the Digital Markets Act for the first time. The major cloud providers, primarily from the US, have so far evaded the EU's Digital Markets Act because a large part of their business is handled through corporate contracts. This makes it difficult to determine the number of individual users. However, this is one of the EU's most important criteria for determining the market power of companies. [...] As gatekeepers, AWS and Azure would be obliged to ensure interoperability and data portability. This would, for example, simplify switching cloud providers and allow customers to link other services with AWS or Azure clouds, instead of being limited to AWS and Azure offerings. Significant fines could also be imposed if the cloud services are found to be in violation of existing regulations.

This discussion has been archived. No new comments can be posted.

EU To Soon Classify AWS and Azure As Gatekeepers Under DSA

Comments Filter:
  • by satsuke ( 263225 ) on Friday June 19, 2026 @01:22PM (#66200688)

    When IT becomes a national soverienty issue, these kinds of regulations will become absolutely essential.

    Because yeah ,, a cloud outage in the US shutting down government services in Europe and elsewhere is a security problem since it could also be done maliciously.

    Think of a hypothetical where the alternative systems to GPS (American) didn't exist (e.g. GLONASS and Galileo) and the US decided to shut down positioning service in the EU because (of reasons that aren't important) . It would fuck with air travel, emergency services, people navigating cities, all that. The lack of a domestic or alternative provider would be massively disruptive.

    Same with these cloud services ..

    • by bartoku ( 922448 ) on Friday June 19, 2026 @01:55PM (#66200742)

      a cloud outage in the US shutting down government services in Europe and elsewhere

      My guess is that the US companies have data centers in Europe so an outage in the US would not affect Europe.

      However I do not think that negates your point of being dependent on a foreign company or failing to have redundancy.
      Your example of redundant Global Navigation Satellite Systems (GNSS) is a great example of redundancy benefiting everyone; I love having a GNSS chip that supports all three chips even if I am in the US.

      Although cloud providers have always felt like they had pretty good interoperability and data portability to me; I just move my docker contain from AWS to Azure to Google Cloud to OVH; or have one on each cloud ready to go and one in my garage and my mom's basement just in case?

      The issue is the services mentioned are centralized. My video streaming should be Bittorrent not Amazon or Netflix, my game server anyone can host not on Epic servers, and my communication pier-to-pier not all connected by a central host like Signal. Not sure why Docker made that list, just make a mirror of their repos and binaries? Really the list of services in the summary/article are kind of silly, most are not critical and the providers have a great incentive to make sure they are provided and redundant so not to lose customers.

      • You're right, CSPs have regional centers and outages are usually regional. But outages are a pretty flimsy excuse to hang this on generally. There were global outages that impacted everybody, so they're going to change the competition rules? That doesn't even make sense! And none of this would address the issues you cited. Regulating them as "gatekeepers" (what gate?) won't increase redundancy. It won't change dependency on foreign providers.

        And, as you pointed out, it isn't actually hard to migra

        • I think you and I are in agreement.
          In general I would assert that government regulation is absolutely the wrong solution.
          This appears be no exception to that rule and driven by ulterior motives.
          I am sure their is some incompetence on the law makers side, they do not understand how cloud computing works; but even if they did all they want is more power anyway.

          • by satsuke ( 263225 )

            I think you are having a "see the forest if not for the trees" moment.

            Governments aren't supposed to follow industry practice or business needs when it comes to national security. They need to act to protect their nation more than a company.

            regulations requiring some data to be held physically domestically and isolated authentication become their purview when their failure can plunge a country into chaos, which can happen with something as simple as say a transit system not accepting payment.

      • by Tomahawk ( 1343 ) on Friday June 19, 2026 @03:49PM (#66201012) Homepage
        AWS us-east-1 had an issue last year. us-east-1 is also the "Global" region, so this affected IAM Roles (among other "global" services) across the entire world. Everyone was affected until the issue was resolved.
      • My guess is that the US companies have data centers in Europe so an outage in the US would not affect Europe.

        In the world of dynamically assigned resourcing there's always an ability to shutdown everything everywhere at once. Not one major tech company has to date not had a major global outage (typically short) caused by some configuration snafu which replicated across the globe.

  • There are companies that specialize in migrating businesses from one platform to another. Is the EU trying to shut them down?
    • by bn-7bc ( 909819 )
      Not necessarily, people will need help to migrate from aws /O365Google workplaces ( or whatever the call it today), To the new EU solution and people will allso need to sync data between the eu cloud and one of the others for cloud redundancy, because as we have seen relying on nonly one cloud (even multiple availability regions from the same provider) might not be enough (looking at you AWS)
    • Yes, if those companies are American.

    • Is the EU trying to shut them down?

      I'm trying to figure out if you're serious. In case you are: no. I work for such a company BTW.

      • Is the EU trying to shut them down?

        I'm trying to figure out if you're serious. In case you are: no. I work for such a company BTW.

        What will your company do, and will your job continue to exist, when it becomes a matter of clicking on a destination service name, and then clicking the begin transfer button?

    • by pooh666 ( 624584 )
      Some business models are only based on the original corruption that AWS actually is. The pricing complexity alone is worse than a shell game. And then we have to pay "experts" to manage that MADE UP complexity??
  • The EU, or Europe, does not appear to have the capacity to do everything it wants to do. At the moment, it wants to have super generous social welfare, vastly increase its military to defend against Russia, zero out its dependence on fossil fuels, zero out its nuclear power, replace every US service it uses by investing capital equal to US to provide those services, and at the same time fight off competition from China, all with a shrinking population of Europeans, and invasion of migrants from 3rd world

  • Outages happen. How does reclassifying CSPs change that? The servers are already regional. It's already pretty straightforward to migrate between them (because each wants it to be easy to move to theirs). 365 is loaded with things that can connect to AWS (and I assume vice versa). Since interop exists and the data is all portable (getting ready to do a migration myself), what's left? What else is mentioned, finding out the number of users? This won't do that either!

    So, what problem are they trying t

    • why are they doing it?

      The existing law is every online service with over 50 million EU users is a gatekeeper. They started with social media which are easy because they boast a user count. Now they reach cloud which make sit more difficult to count users that use the services implemented on these clouds. We don't have yet the announcement yet, it is likely they will also classify EU cloud providers as well, not only AWS and Azure.

  • I am Vinz, Vinz Clortho, Keymaster of Gozer...Volguus Zildrohoar, Lord of the Seboullia.

  • Heise's paper mixes DSA and DMA terms just like if it was the same legislation.

If Machiavelli were a hacker, he'd have worked for the CSSG. -- Phil Lapsley

Working...