Early Stage
Defending Europe's data independence. Building GDPR-compliant alternatives to foreign tech giants. No backdoors. No foreign access.
Three pillars to reclaim Europe's digital independence
Monitor contracts between EU institutions and non-European data companies. Transparency through freedom of information requests and public reporting.
View CasesDevelop and promote European-owned, GDPR-compliant digital services. Email, cloud, search — infrastructure that respects European law and values.
View ServicesRaise public awareness about data sovereignty risks. Empower citizens and organizations to make informed choices about their digital infrastructure.
Learn MoreKey milestones in Europe's fight for data independence
Edward Snowden exposes NSA mass surveillance programs, revealing how US intelligence agencies access data from American tech companies operating in Europe.
The General Data Protection Regulation comes into force, giving EU citizens unprecedented control over their personal data. However, enforcement remains a challenge.
US passes legislation allowing law enforcement to demand data from US companies regardless of where it's stored, directly contradicting EU data protection principles.
EU Court of Justice invalidates Privacy Shield, ruling that US surveillance laws don't provide adequate protection for EU citizens' data.
US defense contractor Palantir signs contracts with multiple EU police forces and health systems, raising serious sovereignty concerns.
Initiative begins to monitor, expose, and provide alternatives to foreign control of European digital infrastructure.
GDPR-compliant services built in Europe, hosted in Europe, governed by European law
Curated list of European-owned digital services. Find alternatives you can trust. Regular audits and compliance verification.
Free, privacy-first email service. No tracking, no ads, full encryption. European servers, European jurisdiction. Zero knowledge architecture.
German Servers
Secure cloud storage with zero-knowledge encryption. Your data never leaves European jurisdiction. Client-side encryption before upload.
Privacy-respecting search engine. No tracking, no profiling. EU data centers only. Alternative to Google and Bing.
Real threats to European data sovereignty you should know about
The Clarifying Lawful Overseas Use of Data Act allows US law enforcement to access data stored by US companies anywhere in the world — including European servers.
Palantir Technologies, a US defense contractor, provides data analytics to European police forces and intelligence agencies.
Post-Snowden revelations confirmed that the NSA routinely accesses data from major US tech companies, including those serving European customers.
89% of cloud infrastructure used in Europe is owned by non-EU companies, primarily American (AWS, Azure, Google Cloud).
Real-world examples of sovereignty breaches
Netherlands
2022
The Dutch Tax and Customs Administration used Amazon Web Services to process sensitive citizen tax data. Following privacy concerns and GDPR violations, they were forced to migrate to EU-based alternatives.
Germany
2023
Multiple German states signed contracts with Palantir for police data analysis software. Privacy activists challenged these contracts as violations of German and EU data protection law.
France
2021
France's Health Data Hub chose Microsoft Azure to host sensitive health data of 67 million French citizens, sparking massive controversy over CLOUD Act implications.
The Austrian Data Protection Authority ruled that using Google Analytics violates GDPR because it transfers data to the US, where it's subject to surveillance.
Open-source, privacy-respecting desktop and mobile apps we recommend — no foreign cloud required
Mozilla's free, open-source email client. Full control over your mail, no cloud lock-in, supports end-to-end encryption via OpenPGP out of the box.
thunderbird.net →Mozilla's open-source browser. The only major browser not owned by an ad company or OS vendor. Pair with uBlock Origin for a tracking-free experience.
firefox.com →End-to-end encrypted messaging and calls. Open-source protocol, non-profit foundation, zero ads, zero data collection. The gold standard for private communication.
signal.org →Self-hosted cloud platform for files, calendar, contacts and more. Run it on your own server or choose a European provider — your data never leaves your control.
nextcloud.com →Open-source password manager with end-to-end encryption. Self-hostable, cross-platform, and audited. A must-have for anyone serious about digital security.
bitwarden.com →Self-hostable, privacy-first search frontends. Whoogle proxies Google results without tracking; SearXNG aggregates multiple engines. No profile, no ads.
github: whoogle →Every first Sunday of the month — switch to the good side
Our digital lives are in the hands of a few ultra-rich individuals. With the monopoly power of their companies, people like Elon Musk, Jeff Bezos, or Mark Zuckerberg determine worldwide how we inform ourselves online, how we discuss, communicate, and act. No person or company should have such uncontrolled influence — because then we can no longer live in freedom.
The good news: we are currently giving them this power, and we can take it back.
Step-by-step guides to reclaim your digital independence — from di.day/wechselrezepte
Everything you need to know about digital sovereignty
Digital sovereignty means having control over your own digital infrastructure and data. For Europe, it means:
American cloud services subject European data to US law, specifically:
These laws directly contradict GDPR and European privacy rights. The EU Court of Justice has repeatedly ruled that US law doesn't provide adequate protection (Schrems I & II decisions).
Palantir is a US defense contractor with deep ties to US intelligence agencies. Problems include:
European police forces should use European software subject to European oversight.
GDPR is necessary but not sufficient. While it provides strong privacy protections on paper, it cannot:
True sovereignty requires: European companies + European infrastructure + European law + GDPR enforcement.
Several ways to support digital sovereignty:
EU-Data.org is self-funded through XPSystems.eu, a German technology company. We receive no government funding, no venture capital, and no foreign investment.
This ensures complete independence and alignment with our mission.
Built by Europeans, for Europe
EU-Data.org is initiated by EuropeHost.eu, part of XPSystems.eu — a German technology company building the digital infrastructure Europe needs.
The same team founded MTEX.dev, a developer-first platform creating tools they actually wanted to use. Now they're applying that same philosophy to digital sovereignty.
Subject to GDPR. Subject to German data protection law. No foreign jurisdiction can override European privacy rights on our infrastructure.
Founded by Fabian Ternis
Get updates on digital sovereignty issues and new services
