Public Procurement and Cloud Service Providers in Germany

This report examines the regulations, rules and procedures surrounding procurement, and more specifically cloud procurement, in Germany. We provide a snapshot of the laws, regulations, and guidance that may impact cloud uptake and outsourcing in public, financial, and healthcare sectors.

Germany’s Digital Agenda 2014-2017 promoted digitalisation, internet use, technical skills, the buildout of e-government services, and movement towards broader cloud adoption — according to the federal government, successfully. In March 2016, the Federal Ministry of Economic Affairs and Energy released the new digital strategy, Digitale Strategie 2025, which notably implied that cloud can help meet goals.

In 2015, German IT officials agreed on terms for public sector cloud use under Resolution 2015/5 of the federal government’s IT Council. Under this resolution, Germany began developing the ‘Bundescloud,’ a cloud for federal government data hosting incorporating strict data protection and privacy schemes for government agencies.

The Resolution requires Bundescloud providers to sign a non-disclosure agreement promising to refrain from giving access to German data in foreign jurisdictions, such as the US, as well as requiring that sensitive information be stored on servers in Germany. Under these terms, the German government is only allowed to use cloud service providers (CSPs) certified by the government’s IT security office, the BSI, under the Cloud Computing Compliance Controls Catalogue (C5). In 2016, the BSI set C5 requirements as the mandatory minimum baseline for German government agencies to adopt public cloud solutions.

As experts in the field of regulatory policy, Access Partnership have the knowledge and expertise to help guide clients through the cloud procurement landscape. Our public policy specialists have a thorough understanding of the regulatory environment across Germany, the EU, and its member states, and possess extensive sector-specific knowledge, particularly in the fields of finance and health. These attributes allow us to provide our clients with comprehensive solutions to help achieve their goals with minimal fuss.

This report examines the regulations, rules and procedures surrounding procurement, and more specifically cloud procurement, in Germany. We provide a snapshot of the laws, regulations, and guidance that may impact cloud uptake and outsourcing in public, financial, and healthcare sectors.


Related Articles

The Future of Spectrum Sharing: From the Spreadsheet to the Algorithm

The Future of Spectrum Sharing: From the Spreadsheet to the Algorithm

With an increasing demand for high speed connectivity, wireless technologies have occupied wider bandwidths and taken up more spectrum than...

4 Sep 2020 Reports
Regulating the IoT: 2020 and beyond

Regulating the IoT: 2020 and beyond

The widespread deployment of IoT devices revealed the need for a more specific regulatory framework to address associated concerns; specifically,…
16 Jun 2020 Reports
Defining a Path to Fair Tech

Defining a Path to Fair Tech

This report attempts to provide the contours of a framework for how the international community can enjoy the benefits of technology…
7 Jun 2020 Reports
Digital Contact Tracing: A Comparative Global Study

Digital Contact Tracing: A Comparative Global Study

This report provides a timely overview of how 22 tech-enabled countries have approached the use of digital contact tracing to…
27 May 2020 Reports