Keep Sensitive Data Secure and Compliant

Ensure Data Privacy and Sovereignty

All of your sensitive data, including metadata, remains under sovereign control, preventing compelled access by foreign authorities that could violate data privacy laws. 

Boost Security and Compliance

Protect your applications and data against rapidly evolving attack vectors while maintaining continuous compliance with a trusted platform, built-in frameworks, and local experts. 

Future-Proof Your Infrastructure

React quickly to changing data privacy regulations, security threats, and geopolitics. Avoid cloud vendor lock-in with portability for workloads, applications, and data.

Unlock the Value of Your Data

Securely share and analyze data with trusted partners to fuel innovation without violating privacy laws. Data integrity is protected to provide accurate insights. 

The Need for Sovereign Cloud

IDC surveyed 600 respondents about the challenges and complexity of data sovereignty in the cloud, revealing a growing need for sovereign cloud solutions.

88%

of large organizations say data sovereignty is very or extremely important

64%

have increased their volume of highly sensitive data

62%

say their current cloud use only partially meets data sovereignty requirements

Sovereign Cloud Benefits

 

  • Provides the highest data protection in a native Sovereign environment
  • Ultimate platform for choice and control in building a Sovereign Cloud
  • Provides FULL Data Independence and Jurisdictional Control
  • Locally implemented and operated
  • Interoperability and Portability
  • Integrated (and included) Solution with VCF 
  • Trusted ecosystem of CSPs in all major countries that can provide Sovereign Cloud services

VMware Sovereign Cloud 10pt criteria

 

VMware Sovereign Cloud is the most complete and secure solution for data sovereignty that protects against unauthorized access, breaches, or cyberattacks. By working with verified partners, Sovereign Cloud keeps data completely within the jurisdiction and under the owner’s control, yet isolated from the provider’s core network and the internet.

Along with data independence, protection, management, and control, VMware Sovereign Cloud providers offer local expertise and value-added sovereign cloud services to help organizations comply with regulations and data privacy laws. The locally implemented and operated sovereign cloud ensures flexibility, choice, and control so you don’t need to worry about vendor lock-in or excessive cost.

 

  1. Local Residency (Data/Metadata):
    All data must reside in the relevant sovereign country and be subject to and compliance with the applicable local data protection law(s)

  2. Full Jurisdictional Control:
    Governmental authorities in the relevant sovereign country where the data was obtained, have sole jurisdictional control and power over the data and that it is not within the legal or technological purview of foreign governmental bodies, legal authority or access from outside the sovereign country.

  3. Encryption with external keys to Clients (BYOK):
    Data encryption at rest, network encryption for data in transit and key management system (KMS) that remains under the control of the customer or partner within the respective country.

  4. Local Entity
    Managed by a legal entity that will own, operate and manage the Sovereign Cloud Offering  which is located and incorporated in the applicable sovereign country where such offering will be made available, and has no affiliate (including but not limited to, controlling entities, controlled entities, and entities under common control) or any corporate relationship with any corporate entity located outside the sovereign country where the Sovereign Cloud Offering is made available

  5. Local Operations
    Authorized personnel who operate and manage the Sovereign Cloud offering to specific individuals who have applicable sovereign country-specific security clearances for the applicable sovereign country; and full privilege access auditing and management.

  6. Resiliency with 2 data center locations (plus offline Archives)
    the Sovereign Cloud Offering is managed and operated from at least two data center locations within the applicable sovereign country. The data centers must meet Tier III (or equivalent) or higher data center classification, per Uptime (99.982% availability or higher) and backup services with multiple copies.

  7. Full Reversibility (portability without lock-in)
    Support and manage hybrid cloud deployments across different locations (e.g., customer on-premises and cloud), with a consistent architecture (such as VCF) that ensure interoperability between different locations….and ability to migrate workloads to or from the cloud without changing or reworking applications, with full reversibility to prevent cloud vendor lock-in.

  8. Security certification
    Has relevant industry and/or government certifications and attestations that the Sovereign Cloud offering holds and are required in your jurisdiction for end user workloads (e.g. ISO/IEC 27001, ISO 27017, ISO 27018, CSA STAR, Cyber Essentials, FedRAMP, SecNumCloud, ENISA, IRAP, ISMAP, HIPAA, PCI, etc.)

  9. Zero Trust with Logical Network segmentation
    Follow zero trust security posture with logical network segmentation in and across cloud country consistent with a common policy framework.

  10. Isolation for some or all parts of the Sovereign Cloud offering in segregated spaces
    Isolation for some or all parts of the Sovereign Cloud infrastructure in segregated space or environment.

Address Critical Use Cases

Intrinsic-Security-SecureWorkloads

Maintain Data Sovereignty and Control

Prevent access by foreign authorities with a sovereign cloud that stores all data, including metadata, within the local jurisdiction. Data center operations are managed by vetted sovereign citizens.

Intrinsic-Security-Security

Improve Data Security and Compliance

Comply with data privacy laws by partnering with VMware Sovereign Cloud providers for local compliance expertise and continuous monitoring backed by robust security controls and zero trust access. 

Technology-Devices-Desktop

Protect Data Access and Integrity

Unlock value from your sensitive data. In-region data centers with high availability, resilient infrastructure, and low latency make data accessible when needed and protect its integrity.

Multi-Cloud-MultipleClouds

Increase Data Independence and Mobility

Future-proof your cloud infrastructure by adding sovereign cloud to your multi-cloud strategy. Migrate data as needed to respond to changes in technology or geopolitics and avoid vendor lock-in. 

Productivity-Network

Achieve Environmental, Social, and Governance Objectives

Improve data governance by ensuring data is stored and processed in compliance with local regulations. Reduce your carbon footprint by using local data centers powered by renewable energy sources.

Data Sovereignty
Intrinsic-Security-SecureWorkloads

Maintain Data Sovereignty and Control

Prevent access by foreign authorities with a sovereign cloud that stores all data, including metadata, within the local jurisdiction. Data center operations are managed by vetted sovereign citizens.

Security and Compliance
Intrinsic-Security-Security

Improve Data Security and Compliance

Comply with data privacy laws by partnering with VMware Sovereign Cloud providers for local compliance expertise and continuous monitoring backed by robust security controls and zero trust access. 

Access and Integrity
Technology-Devices-Desktop

Protect Data Access and Integrity

Unlock value from your sensitive data. In-region data centers with high availability, resilient infrastructure, and low latency make data accessible when needed and protect its integrity.

Independence and Mobility
Multi-Cloud-MultipleClouds

Increase Data Independence and Mobility

Future-proof your cloud infrastructure by adding sovereign cloud to your multi-cloud strategy. Migrate data as needed to respond to changes in technology or geopolitics and avoid vendor lock-in. 

ESG Objectives
Productivity-Network

Achieve Environmental, Social, and Governance Objectives

Improve data governance by ensuring data is stored and processed in compliance with local regulations. Reduce your carbon footprint by using local data centers powered by renewable energy sources.

VCF Marketecture

VCF Marketecture

In today's rapidly evolving digital landscape, maintaining the sovereignty and security of sensitive data is paramount. VMware Sovereign Cloud, part of the VCF platform stands as the most complete and secure solution…meeting the unique needs of organizations requiring the highest levels of data protection, data independence, and jurisdictional control.

VMware Sovereign Cloud for Every Regulated Industry

Government and Public Sector

Secure mission-critical data in the cloud, free from foreign interference, by keeping it under sovereign control and meeting rigorous government, defense, and cybersecurity regulations.

Healthcare

Safeguard patient data, meet compliance standards, and secure operations against cyberattacks.

Financial Services

Keep pace with evolving regulations while protecting financial data and improving customer experience.

Legal

Protect and control confidential client data without sacrificing privacy or compliance.

Learn, Evaluate, Implement

Resources

Explore technical documentation, reports, trials, communities and more.

Find a Partner

Use Partner Locator to quickly find a VMware partner near you.

FAQ

View common questions and answers about VMware Sovereign Cloud.

Ready to Get Started?