EU Cloud Patterns
Practical architecture patterns for building sovereignty-compliant systems in EU financial services.
Content Pillars
Migration Patterns
Step-by-step guides for moving workloads to EU-sovereign alternatives — with Terraform, cost estimates, and trade-offs.
Sovereignty Assessments
SEAL-level evaluations of real products and architectures. Myth-busting and sovereignty-washing detection.
Regulatory Decoder
When new regulations drop, we translate them into concrete architectural implications.
Builders Journal
Anonymized real-world experiences from sovereignty migrations — lessons, failures, and wins.
Latest Articles
SAP RISE on S3NS: SecNumCloud SaaS, SEAL-2 Ceiling
SAP RISE on S3NS hits SecNumCloud and lands a Thales reference. The catch: SEAL-2, not SEAL-3, and a compound DORA CTPP exposure underneath.
STACKIT's ES³ vs. SEAL: Can Digital Sovereignty Actually Be 'Objectively Measurable'?
ES³ claims sovereignty is objectively measurable. The EU Commission assessed STACKIT at SEAL-3, not the top tier ES³ implies. The assessor isn't the assessed.
Health Data Hub: Azure to Scaleway Migration Pattern
France's Health Data Hub leaves Azure for Scaleway after six years. The reusable pattern: design for reversibility, treat sovereignty as procurement.
CERTFR-2026-ACT-016: Agentic AI on the Workstation
ANSSI named OpenClaw and Claude Cowork. Here is the regulatory cascade across DORA, NIS2, AI Act, and the SEAL pattern for EU CISOs.
The €31.8M Lesson: What Intesa Sanpaolo's Breach Teaches About Cloud Access Control
Inside Italy's €31.8M Intesa Sanpaolo data breach fine: how 26 months of insider access slipped past threshold monitoring, and the access-control patterns that would have caught it.
About EU Cloud Patterns
EU Cloud Patterns bridges the gap between EU sovereignty regulation and real-world infrastructure. Written by a solutions architect working at the intersection of DORA, GDPR, and cloud engineering — every pattern here is built to be deployed, not just discussed.