Is CADA part of the EU's Digital Decade and AI Continent vision?

Summary Yes — as proposed, the Cloud and AI Development Act (CADA) is a central building block of the EU's "AI Continent" ambition and the Digital Decade Policy Programme. CADA would provide the legal and infrastructural framework to expand EU data-centre capacity, reduce reliance on third-country providers and strengthen technological sovereignty. It explicitly ties together the Draghi competitiveness agenda, the Apply AI Strategy and the EU Open Source Strategy. The explanatory memorandum states that CADA aims to triple EU capacity in the next five-to-seven years.

Detail

The Cloud and AI Development Act (CADA), proposed by the European Commission on 3 June 2026 (COM(2026) 502 final), is not an isolated regulation. As proposed, it is the central legislative instrument designed to operationalise broader Commission ambitions — notably the AI Continent Action Plan and the Digital Decade Policy Programme.

Advancing the Digital Decade and AI Continent vision The explanatory memorandum positions CADA as complementing the Digital Decade Policy Programme. The Digital Decade sets high-level targets — including secure, sustainable digital infrastructures and the digital transformation of businesses — but lacks concrete support measures for deploying compute capacity. As proposed, CADA fills that gap.

The Digital Decade is built on four "cardinal points": a digitally skilled population and highly skilled digital professionals; secure and sustainable digital infrastructures; digital transformation of businesses; and digitalisation of public services. The memorandum states that CADA contributes to these cardinal points through concrete measures to develop AI-enabling technologies, deploy compute capacity and create a trust framework for cloud and AI. The proposal aims to triple EU capacity in the next five-to-seven years, a prerequisite for the EU to host the computational demands of modern AI.

The "AI Continent" prerequisite: compute capacity The AI Continent concept depends on the ability to develop, train and deploy AI within the EU rather than routing critical workloads through foreign infrastructure. The explanatory memorandum highlights that the Union's limited data-centre capacity threatens its ability to benefit from digital transformation. Article 1 would establish the framework for strengthening the cloud and AI ecosystem, with the general objective (Article 1(2)) of ensuring the conditions for the competitiveness and innovation capacity of the Union's cloud and AI ecosystem. Through the Cloud Leadership Initiative and the AI Leadership Initiative (Article 1(1)(a)), CADA would support research, innovation and large-scale deployment, including frontier and physical AI — the backbone the AI Continent vision requires.

Tying together key strategic documents As proposed, CADA acts as a synthesising framework for several EU initiatives:

1. The Draghi Report: The proposal responds to Mario Draghi's report, The Future of European Competitiveness, which (per the memorandum) calls for targeted actions to regain control over data and cloud services, expand domestic compute capacity and build a financial and talent flywheel. CADA operationalises these through mechanisms to identify and support data-centre projects and to foster a competitive EU cloud market.
2. The Apply AI Strategy: CADA underpins the Apply AI Strategy's focus on AI adoption across industry and the public sector. Article 7 would require Member States to adopt national cloud and AI strategies aligned with the "AI first" principle, encouraging organisations to reflect on their processes and seize AI opportunities while managing risk.
3. The EU Open Source Strategy: CADA treats open source as a lever for sovereignty. Article 41 would require Union entities and public sector bodies to encourage and facilitate the use of open-source solutions over proprietary ones, aligning with the EU Open Source Strategy's goals of open European alternatives, reduced lock-in and greater transparency.

Strategic autonomy and public order Beyond infrastructure, CADA addresses dependence on third-country providers. As proposed, it would introduce a Union cloud computing sovereignty framework with four assurance levels (Article 16). Member States would conduct risk assessments (Article 29) to determine which public-sector activities require higher assurance (levels 2, 3 or 4) to protect public order. The aim is control and resilience, not volume alone.

What this means for you

For public-sector procurement officers and digital leaders, CADA would signal a shift from ad-hoc cloud procurement to a structured, sovereignty-aware approach.

• Procurement criteria: You would need to align procurement with the Union assurance levels. Under Article 30, contracting authorities whose activities have public-order relevance (as determined by risk assessments under Article 29) would have to procure services recognised at Union assurance levels 2, 3 or 4; for other activities, a minimum of level 1 would apply.
• National strategies: Your organisation would operate within your Member State's national cloud and AI strategy (Article 7), which must be consistent with CADA's objectives and support the deployment of AI in strategic sectors.
• Open-source preference: Article 41 would have you encourage and facilitate open-source solutions, which can reduce long-term costs, improve auditability and mitigate lock-in.
• Innovation procurement: Article 33 would require monitoring of innovation procurement, with Member States pursuing the objective of awarding at least 25% of relevant cloud/AI procurement to innovative SMEs — a route to access European solutions and support the local ecosystem.

Common misconceptions

• Misconception: CADA replaces the AI Act.
  • Reality: As proposed, CADA complements the AI Act. The AI Act harmonises rules for the safety and fundamental-rights protection of AI systems; CADA focuses on the underlying infrastructure, sovereignty and ecosystem. They are distinct but interconnected.
• Misconception: The Digital Decade already ensures enough cloud capacity.
  • Reality: The Digital Decade sets targets but lacks binding deployment measures. CADA would add concrete tools — such as data-centre acceleration zones and strategic-project designation — to build the infrastructure.
• Misconception: Sovereignty means banning all non-EU providers.
  • Reality: As proposed, the framework manages risk rather than excluding outright. Under Article 18, cloud services controlled from a third country could be audited for Union assurance level 3 where the Commission determines, by implementing act, that the country meets cumulative criteria (such as a GDPR adequacy decision and open-market conditions).

Official sources

• EU AI Act (Regulation (EU) 2024/1689)
• GDPR (Regulation (EU) 2016/679)
• Digital Decade Policy Programme (Decision (EU) 2022/2481)

Related

• How does CADA relate to the Digital Decade Policy Programme?
• How CADA Interacts With GDPR, the AI Act, NIS2 and EU Digital Law
• What is the AI Continent Action Plan, and how does it relate to CADA?
• How CADA Relates to the Digital Markets Act (DMA)
• How does CADA fit the EU's International Digital Strategy?

This is general information about a draft EU regulation, not legal advice.