How does CADA reduce hardware dependencies alongside the Chips Act?

Summary The proposed Cloud and AI Development Act (CADA) would reduce hardware dependencies by creating a regulatory and financial ecosystem that prioritizes European-designed and manufactured compute infrastructure, working in tandem with the Chips Act 2.0. As proposed, Article 1(1)(d) explicitly sets "reducing dependencies on critical technologies" as a core objective. CADA would achieve this by mandating "Union added value" criteria in public procurement (Article 32), which incentivizes the purchase of hardware components designed or manufactured in the Union. Simultaneously, the Cloud and AI Leadership Initiatives would fund the development of sovereign cloud stacks and AI-optimized servers based on EU semiconductors. This dual approach ensures that regulatory demand-side measures align with supply-side industrial policy to mitigate reliance on third-country critical technologies.

Detail

The Cloud and AI Development Act (CADA) is a legislative proposal designed to strengthen Europe's cloud and AI ecosystem by addressing the structural imbalances and dependencies that currently characterize the market. A core objective of the proposal, as explicitly stated in Article 1(1)(d), is "reducing dependencies on critical technologies." This objective is not pursued in isolation but is intricately linked to the broader EU industrial strategy, particularly the review of the Chips Act (often referred to as Chips Act 2.0). The relationship between CADA and the Chips Act is one of supply-side capacity building meeting demand-side regulatory steering.

The Strategic Nexus: CADA and the Chips Act 2.0

The CADA proposal recognizes that software sovereignty is impossible without hardware sovereignty. The explanatory memorandum highlights that the Cloud and AI Leadership Initiatives should facilitate the development of AI-optimized servers and software based on processors, accelerators, and quantum accelerators "designed and manufactured in the Union." It explicitly references the need for co-design and cross-optimization of hardware and software development.

Recital 27 of the proposal further clarifies this linkage by stating that the "grand challenges" addressed by the Cloud and AI Leadership Initiatives should build on those established in the framework for strengthening Europe's semiconductor ecosystem (the Chips Act 2.0). The proposal aims to enable semiconductor technologies that underpin AI, cloud computing, data centres, and edge infrastructures. By aligning CADA's operational objectives with the Chips Act's goals, the EU seeks to create a cohesive value chain where European semiconductor production directly feeds into European cloud and AI infrastructure needs.

This alignment is critical because, as noted in the proposal, the current landscape is characterized by a "pronounced dependence on a limited pool of third-country providers." CADA seeks to reverse this by ensuring that the hardware underpinning the EU's digital transformation is rooted in Union-based design and manufacturing.

Supply-Side Measures: Building the Infrastructure

CADA proposes several mechanisms to boost the supply of European hardware and computing capacity, directly feeding into the Chips Act's objectives:

1. Cloud and AI Leadership Initiatives: Under Article 3, the proposal establishes operational objectives to support the development and deployment of cutting-edge cloud and AI technologies. Specifically, Article 4(2)(b) mandates support for the "development of AI-optimised servers and baseline software based on processors, accelerators and quantum accelerators designed and manufactured in the Union." This creates a direct funding and policy pathway for hardware innovation, ensuring that the hardware layer of the cloud stack is developed within the Union.
2. Data Centre Strategic Projects: Article 14 allows the Commission to designate data centre projects as "strategic projects" if they meet specific criteria. One such criterion, under Article 14(1)(d), is whether the project "supports the integration of chips, processors and accelerators, servers or quantum computers designed and/or manufactured in the Union into data centre systems." This designation can unlock public support and accelerated permitting, directly incentivizing the deployment of European hardware in critical infrastructure.
3. Grand Challenges: Annex I outlines "Grand Challenge 2: Cloud stacks," which focuses on building end-to-end hardware and software cloud stacks, including AI servers powered by semiconductors and quantum technologies designed and manufactured in the Union. This initiative aims to bridge the Union's critical capacity gaps by fostering an autonomous cloud stack. Additionally, "Grand Challenge 1" focuses on environmental sustainability and security, including the integration of semiconductor technologies designed and manufactured in the Union to enhance resilience against physical and cybersecurity threats.

Demand-Side Measures: Steering Procurement

While supply-side measures build capacity, CADA uses public procurement to create a guaranteed market for European hardware. The proposal introduces "Union added value" criteria to guide contracting authorities toward solutions that strengthen the EU's digital supply chain.

Article 32 requires contracting authorities to include non-price award criteria in public procurement procedures for innovative cloud computing services and AI systems. These criteria allow authorities to evaluate the tenderer's contribution to the development of a European cloud and AI ecosystem. Specifically, Article 32(3)(d) states that authorities shall evaluate the extent to which "the service is delivered, to the greatest extent feasible with regard to market availability and technical requirements, through critical computing, storage and networking hardware components designed and/or manufactured in the Union."

This provision is significant because it moves beyond abstract notions of sovereignty to concrete hardware components. It does not mandate exclusive use of European hardware (acknowledging market availability constraints) but makes it a decisive factor in quality evaluation, thereby creating a financial incentive for providers to source or develop European hardware. This aligns with the broader goal of Article 1(1)(d) to reduce dependencies on critical technologies by fostering a competitive European supply base.

The proposal also notes that this criterion should not be decisive for the award of the contract and should be applied in a manner that preserves the primacy of technical and financial criteria. However, the inclusion of hardware provenance as a quality metric represents a significant shift in how public sector bodies will evaluate cloud and AI solutions.

Sovereignty Framework and Hardware Control

The sovereignty framework established in Title IV of CADA also indirectly influences hardware dependencies. Article 16 sets out four Union assurance levels for cloud computing services. While these levels primarily focus on data location, personnel, and third-country control, the audit criteria in Annex II require strict oversight of the software supply chain and operational autonomy.

For instance, Annex II, Section 2.1(i) requires providers to demonstrate that software supply chain measures are in place, including controls over third-country software components. This scrutiny extends to the underlying hardware and firmware, ensuring that even if hardware is sourced from third countries, it is subject to rigorous security and sovereignty assessments. Annex II, Section 4.1(i) for Level 4 further requires measures to retain effective control over software components, demonstrating that a third country does not hold or exercise effective control over the design, development, maintenance, and evolution of those components. This ensures that the hardware and software stack remains resilient against foreign interference.

What this means for you

For CTOs, architects, and SMEs, the proposed CADA framework presents both challenges and opportunities regarding hardware strategy and procurement.

For Hardware Providers and SMEs

If your company designs or manufactures computing hardware, processors, or accelerators in the EU, CADA creates a significant tailwind. The explicit mention of "designed and/or manufactured in the Union" in Article 14(1)(d) and Article 32(3)(d) means that European hardware will have a competitive advantage in public sector tenders and strategic data centre projects. SMEs should position their products as key components of "European added value" in bids for cloud and AI services. Furthermore, participation in the Cloud Leadership Initiative's grand challenges (Annex I) could provide access to funding and pilot lines for next-generation energy-efficient and AI-optimized hardware.

For Cloud Service Providers and Architects

Architects designing cloud infrastructure for public sector clients must prepare for the new procurement landscape. You will need to document the origin of your hardware components to demonstrate compliance with Article 32 criteria. This may involve closer collaboration with European hardware vendors or developing supply chain transparency tools that can verify the provenance of chips and servers. Additionally, as the EU pushes for "open cloud computing stacks" (Article 4(2)(a)), architects should prioritize interoperability and avoid vendor lock-in with non-EU hyperscalers whose hardware ecosystems may not align with the sovereignty requirements of Annex II.

For Public Sector Buyers

Contracting authorities will need to revise their procurement templates to include the non-price award criteria outlined in Article 32. This means evaluating bids not just on cost and performance, but on the strategic contribution of the hardware and software stack to the EU's technological autonomy. Buyers should engage early with suppliers to understand the European content of their offerings and ensure that the "feasibility" clause in Article 32(3)(d) is applied consistently to avoid market distortion while still driving demand for European hardware.

Common misconceptions

Misconception 1: CADA bans non-European hardware. CADA does not prohibit the use of hardware designed or manufactured outside the Union. Article 32(3)(d) explicitly states that the use of European hardware should be applied "to the greatest extent feasible with regard to market availability and technical requirements." The goal is to incentivize and prefer European hardware through procurement criteria, not to create an immediate embargo.

Misconception 2: The Chips Act and CADA are separate, unrelated laws. While distinct legislative instruments, they are strategically aligned. CADA's Article 4 and Recital 27 explicitly reference the Chips Act framework to ensure that software and cloud initiatives are supported by a robust semiconductor supply chain. They are complementary pillars of the EU's digital sovereignty strategy.

Misconception 3: "European added value" applies only to software. The proposal clearly extends the concept to hardware. Article 32(3)(d) specifically mentions "critical computing, storage and networking hardware components." This is a deliberate expansion to address the physical layer of the cloud stack, recognizing that software sovereignty is underpinned by hardware control.

Misconception 4: CADA only affects the public sector. While the procurement obligations fall on contracting authorities, the sovereignty framework reaches any provider wanting to serve them, and CADA's data-centre and innovation measures affect the wider market. The "grand challenges" and strategic project designations under Article 14 apply to projects that may involve private sector investment and innovation.

Official sources

• Data Act (Regulation (EU) 2023/2854)

Related

• Why is CADA part of the EU tech sovereignty package with the Chips Act 2.0?
• If I comply with the Chips Act, do I comply with CADA?
• CADA and the Chips Act 2.0: How the EU's Digital Stack Laws Interact
• How CADA and the Data Act reduce non-EU cloud dependency
• Do CADA frontier AI compute projects rely on Chips Act semiconductors?

This is general information about a draft EU regulation, not legal advice.