A US State Department cable on Chinese AI distillation has turned model provenance into an immediate vendor due diligence question for EU deployers. Three concrete asks for every supplier this quarter, and where the EU AI Act helps but does not finish the job.
The European Commission awarded €180 million in sovereign cloud contracts assessed against its new Cloud Sovereignty Framework and SEAL levels. A working reference for procurement teams.
A US court ruled that AI chatbot interactions are not privileged and can be compelled as evidence. Most organisations’ AI acceptable use policies are not ready for this. Here is what to fix.
A supplier acquisition can quietly move national identity infrastructure under foreign jurisdiction. The DigiD sovereignty risk is a live example of how this happens, why EU law already rules it out and what every EU organisation running critical systems should check before the same logic applies to them.
The Anthropic-Pentagon fallout is not a defence story. It is an AI vendor governance case study that exposes three structural risks every EU deployer needs to assess and monitor.
The European Commission is assessing whether ChatGPT qualifies for DSA platform designation. For deployers, this changes the risk profile of every AI tool built on a regulated platform.
