The cloud repatriation: why European leaders are rethinking their cloud strategy

Control has become a boardroom priority

The most cited driver behind cloud repatriation is not price. It is control.

When an organisation runs its core infrastructure on a hyperscaler, it inherits that provider's architectural decisions, pricing model, support structure, and, increasingly relevant in Europe,  legal jurisdiction. For workloads that are stable and predictable, this trade-off often delivers diminishing returns over time. For workloads that are sensitive or regulated, it can become a liability.

European leaders are particularly attuned to this dynamic. A 2025 survey found that 67% of Dutch government bodies, healthcare providers, educational institutions, and critical businesses are connected to at least one American cloud platform. The Dutch government responded by pausing public sector cloud migrations to US providers, a decision that sent a clear signal about the strategic risks of concentrated dependency.

For CTOs and CIOs, the lesson is straightforward: the question is no longer how quickly you can migrate to the cloud, but how intentionally you have chosen which cloud, for which workloads, under whose terms.

The economics are quietly changing

While this article is not about price alarms, the economics of cloud infrastructure have shifted in ways that boards should understand.

For workloads with predictable, stable demand such as databases, internal applications, storage and CI/CD pipelines, private or European cloud infrastructure often delivers better unit economics over a twelve-to-thirty-six-month horizon than equivalent hyperscaler configurations. The case of 37signals is instructive: after moving off AWS, the company reported nearly $2 million in annual savings in 2024, with projected five-year savings exceeding $10 million.

The hidden variables compound the difference. Egress fees, which are charges for moving your own data out of a cloud provider's network, remain one of the least visible costs in enterprise cloud contracts. When combined with cross-region replication charges, premium support tiers, and IPv4 surcharges, the gap between quoted pricing and the actual invoice can be substantial. Providers that offer transparent, predictable pricing with zero egress fees eliminate this forecasting risk entirely.

For CFOs, the implication is clear: total cost of ownership, not headline rates, should drive provider evaluation.

The EU has removed the legal barriers to switching

One of the most significant but under-discussed developments of the past year is the EU Data Act, which became applicable on 12 September 2025.

Among its provisions, the Data Act establishes a comprehensive right to switch cloud providers. Providers are now legally required to remove commercial, technical, and contractual obstacles that inhibit customers from migrating to another service. They must support the switching process within defined timelines (typically thirty days, extendable to seven months for complex environments) and switching fees will be completely prohibited from January 2027.

For business leaders who have assumed that switching providers is too complex, too risky, or too expensive: the regulatory environment has fundamentally changed. The lock-in argument that once justified staying with a single hyperscaler is eroding on both legal and technical fronts.

On the technical side, cloud platforms built on open-source foundations and standard APIs S3-compatible object storage, Kubernetes-conformant orchestration, standard DNS and load balancing make portability a practical reality, not just a regulatory right.

What a modern cloud strategy looks like

Gartner predicts that by 2028, over 40% of leading enterprises will have adopted hybrid computing architectures for critical business workflows, up from just 8% today. That trajectory tells us where the market is heading: not away from the cloud, but toward a more intentional relationship with it.

A modern European cloud strategy typically involves three principles.

Workload-aware placement. Not every workload belongs in the same environment. Bursty, experimental, or globally distributed workloads may benefit from hyperscaler reach. Stable production workloads, regulated data, and core business applications often perform better.

Sovereignty by design. For European organisations, the jurisdictional question matters. Choosing a provider that is incorporated in Europe, governed by EU law, and operates from European data centres is not a political statement, it is a risk management decision. European cloud services that offer production-grade managed Kubernetes, object storage, and identity management provide a genuine alternative to hyperscaler lock-in.

Portability as a principle. The EU Data Act has made portability a legal right. But the organisations best positioned to exercise that right are those that built for portability from the start, using standard APIs, open-source tooling, and infrastructure that does not depend on proprietary services.

The strategic question

The organisations that moved fast into the public cloud five or ten years ago made the right call for that moment. The organisations making the right call now are the ones asking harder questions: Where does each workload belong? Who controls our infrastructure and under what legal framework? Can we move if we need to?

Even organisations that are not yet ready for a full strategic shift should consider which of their workloads and data ought to reside on European soil as a matter of principle. The regulatory direction is clear: the EU's Cloud Sovereignty Framework, published in late 2025, sets out eight sovereignty objectives for cloud procurement, and NIS2 compliance deadlines arrive in October 2026 for organisations across eighteen critical sectors.

Whether or not these rules apply to you today, the trajectory suggests that more workloads, not fewer, will need to meet European jurisdictional standards in the years ahead. Starting that assessment now, rather than under regulatory pressure later, is simply good governance.

These are not engineering questions. They are strategic questions that belong in the boardroom. And the answers, increasingly, are pointing toward a more balanced, more European, and more intentional cloud architecture.