Sweden has published its first cloud policy for public administration, instructing agencies to prioritise Swedish and European cloud services while stopping short of banning American providers. The policy was announced by the Ministry of Finance in May 2026 and is part of the government’s broader digitalisation strategy for 2025 to 2030.
Erik Slottner, the minister responsible at the Ministry of Finance described the policy as an important step toward stronger security, efficiency and innovation in how public administration uses cloud services. He said that with this policy, Sweden is taking an important step to strengthen security, efficiency and innovation in the public sector’s use of cloud services. The Swedish Post and Telecom Authority will support the implementation of the policy across the public sector.
What the Policy Actually Says
The policy sets three priorities including digital sovereignty, security and flexibility. Swedish and European cloud services are to be preferred when procuring new contracts. Open standards are required to avoid vendor lock-in which has been a persistent problem in Swedish public sector IT procurement for at least a decade. The full policy document is published on regeringen.se alongside the digitalization strategy.
The decision not to ban American services is the policy’s most consequential detail. According to Computer Sweden’s reporting on the announcement, the government explicitly chose against an outright prohibition. That is a meaningful distinction given the current political climate around European data sovereignty and the legal uncertainty created by the Schrems II ruling and subsequent EU-US Data Privacy Framework negotiations.
Preference Is Not the Same as Obligation
A policy that prioritizes Swedish and European services without mandating them leaves procurement officers in an awkward position. Preference language in Swedish public procurement has historically proven easy to work around when a foreign provider offers lower costs or better functionality. Without binding criteria or a clear scoring framework in procurement documentation, this policy risks becoming a statement of intent rather than a structural change.
PTS’s role in implementation will matter here. If the regulator publishes concrete guidance on how agencies should document and justify cloud procurement decisions, the preference language gains teeth. If it does not, agencies will default to familiar suppliers. The government has not published an implementation timeline for PTS guidance as of the policy’s release.
The Vendor Lock-In Problem Has a Long History in Swedish Public IT
The open standards requirement addresses something Swedish public agencies have struggled with for years. Large contracts with Microsoft, Oracle and SAP have repeatedly left individual agencies unable to migrate without prohibitive costs. The policy document names open standards as a tool to preserve flexibility but open standards requirements have appeared in Swedish public IT guidance before without consistently changing procurement behavior.
Whether this policy produces different outcomes depends on whether the open standards requirement is enforceable at the contract level, not just aspirational at the policy level. That detail is not resolved in the current document.
Where This Leaves Swedish Public Agencies Now
Agencies procuring cloud services should read the full policy document published by regeringen.se and not rely on summaries. The policy applies to public administration broadly which means it covers everything from central government ministries to municipal IT procurement, though the enforcement mechanism for the latter is less clear.
For existing contracts with American providers, the policy does not require termination or migration. Agencies should assess their current arrangements against the open standards requirement and document where dependencies on proprietary formats or interfaces exist. That documentation will matter when contracts come up for renewal.
Agencies planning new cloud procurement in the second half of 2026 should wait for PTS guidance before finalizing specifications. Issuing a tender before that guidance is published risks having to revise procurement documents mid-process which is administratively costly and delays delivery.
References
- New Cloud Policy to Contribute to Increased Digital Sovereignty in Public Administration
- A Cloud Policy for Sweden – for Increased Security, Efficiency and Innovation in Public Administration
- Digitalisation Strategy 2025-2030
- Government Presents Cloud Policy – No Ban on US Services
This post is also available in:
June 5, 2026