Summary Under the proposed Cloud and AI Development Act (CADA), the implementation of the Cloud and AI Leadership Initiatives is a shared responsibility primarily entrusted to the European Commission and the Member States. As explicitly set out in Article 6(1), this implementation may also be delegated to joint undertakings or other structures possessing the necessary expertise and resources. Crucially, Member States must operationalise these initiatives through mandatory national cloud and AI strategies under Article 7, which must be adopted within one year of the Regulation's entry into force and align with Union objectives.

Detail

The Cloud and AI Development Act (CADA), as proposed in COM(2026) 502 final, establishes a comprehensive framework to strengthen Europe's cloud and AI ecosystem. A cornerstone of this framework is the "Cloud and AI Leadership Initiatives," designed to promote research, innovation, and the deployment of large-scale capacity. For legal practitioners and compliance officers, understanding the precise allocation of responsibility for delivering these initiatives is essential, as it determines the locus of obligations, reporting lines, and strategic alignment.

Primary Responsibility: The Commission and Member States

The foundational allocation of responsibility is defined in Article 6(1) of the CADA proposal. This provision states unequivocally that the implementation of the Cloud and AI Leadership Initiatives' operational objectives "shall be entrusted to the Commission and the Member States."

This creates a dual-layered governance model:

  1. The European Commission: Acts as the central coordinator and strategic driver. The Commission is responsible for setting the overarching direction, managing Union-level funding mechanisms, and ensuring consistency across the single market. Notably, Article 6(4) empowers the Commission to adopt delegated acts to amend Annex I (which lists the "grand challenges" or specific operational objectives) to reflect technological and market developments. This ensures the Initiatives remain dynamic and responsive to rapid innovation.
  2. The Member States: Are responsible for executing these initiatives at the national level. Their role is not passive; they must ensure that national policies, funding allocations, and infrastructure deployments align with the Union's overarching goals. This shared responsibility ensures that the Initiatives are not merely theoretical Union-level concepts but are grounded in national realities and execution capabilities.

Role of Joint Undertakings and Other Structures

Recognising the technical complexity and scale of the challenges addressed by CADA, Article 6(1) introduces a flexible mechanism for delivery. The text specifies that implementation may also be entrusted to "joint undertakings or any other structures capable of achieving those objectives."

This provision is legally significant for organisations engaged in public-private partnerships or EU-funded consortia. It authorises the Commission and Member States to leverage existing governance bodies with specific technical expertise and financial mechanisms. The proposal explicitly references structures such as the Smart Networks and Services Joint Undertaking and the European High Performance Computing Joint Undertaking (EuroHPC JU) as potential vehicles for execution. These entities are often better positioned to manage large-scale, cross-sectoral "grand challenges" due to their established cross-border reach and specialised operational capacity.

For legal teams, this means that compliance and contractual obligations may not flow solely through national ministries or the Commission, but could be channelled through these specific joint undertakings, each with its own governance rules and reporting requirements.

Member State Obligations: National Cloud and AI Strategies

While the Commission and joint undertakings handle strategic coordination and specific project execution, Member States have a distinct, mandatory, and time-bound obligation to support delivery through national planning. Article 7 imposes a requirement on each Member State to establish a national cloud and AI strategy.

This is a core compliance obligation, not a voluntary policy statement. Under Article 7(1), Member States must establish these strategies within one year of the Regulation's entry into force. The content of these strategies is strictly defined in Article 7(2) and must include:

  • Key objectives and priorities for cloud and AI adoption, aligned with the "AI first" principle.
  • Governance and monitoring frameworks to achieve these objectives.
  • Measures to accelerate development and adoption at national, regional, and local levels, particularly for SMEs and public sector bodies.
  • Specific measures to support data centre deployment, focusing on high-value, energy-efficient facilities.
  • Investment plans for high-intensity computing infrastructure, including AI factories and quantum computers.
  • Measures to support cloud and AI capability development, including through public procurement and innovation procurement.

Article 7(3) further mandates that these national strategies must be consistent with the objectives of CADA. This creates a direct line of accountability: a Member State's national strategy must not diverge from the Union's Leadership Initiatives. Furthermore, Article 7(5) requires Member States to notify the Commission of their strategies within three months of adoption and to assess them at least every three years.

Funding and Synergies

The delivery of these initiatives is financially underpinned by Union programmes. Article 6(3) explicitly states that the Initiatives "may be supported by funding from Union programmes, including Horizon Europe and the Digital Europe Programme."

The proposal emphasises the need for synergies with other EU instruments, such as the Chips Act and the European Competitiveness Fund. Legal and compliance teams must monitor how these funding streams are allocated, as participation in the Leadership Initiatives often requires adherence to specific reporting, audit, and sustainability criteria tied to these financial instruments. The Commission is empowered to adopt delegated acts to amend Annex I to ensure the "grand challenges" remain aligned with available funding and market realities.

What this means for you

For in-house counsel, compliance officers, and strategic planners, the distribution of responsibility under CADA has several critical practical implications:

  1. Monitor National Strategy Adoption and Content: Since Member States must align their national strategies with CADA objectives within one year of entry into force (Article 7), you must closely track your jurisdiction's specific strategy. Deviations or delays in national implementation could directly impact local market access, subsidy eligibility, or procurement preferences. Ensure your organisation's roadmap aligns with the specific measures outlined in your national strategy, particularly regarding data centre deployment and AI adoption.
  2. Engage with Joint Undertakings Early: If your organisation is involved in large-scale cloud or AI infrastructure projects, or if you are a research entity, consider the pivotal role of joint undertakings. As per Article 6(1), these entities are key delivery mechanisms. Understanding their specific governance structures, funding rules, and reporting requirements is essential for compliance in EU-funded projects. They may act as the primary interface for project management rather than national authorities.
  3. Align with Union-Level "Grand Challenges": The Commission's role in setting and updating the "grand challenges" via delegated acts (Article 6(4)) means that strategic alignment with evolving EU priorities can significantly enhance your organisation's competitiveness. Compliance teams should ensure that internal AI and cloud development plans are consistent with the operational objectives outlined in CADA, particularly regarding sustainability, security, and technological sovereignty.
  4. Prepare for Multi-Level Reporting: As implementation progresses, expect increased reporting requirements from both the Commission and national authorities. This includes data on capacity deployment, sustainability metrics, and adherence to national strategies. Early preparation for these data governance obligations will mitigate future compliance risks.

Common misconceptions

  • "Only the Commission is responsible for delivery." This is incorrect. While the Commission plays a central coordinating role and sets the strategic direction, Article 6(1) explicitly shares implementation responsibility with Member States. National governments are active implementers with mandatory obligations to create and execute national strategies under Article 7.
  • "Joint undertakings are merely optional or advisory." While the text states implementation may be entrusted to them, in practice, joint undertakings are likely to be the primary vehicles for delivering complex, cross-border "grand challenges" due to their existing structures, expertise, and funding mechanisms. Ignoring their role could mean missing out on key funding and partnership opportunities.
  • "National strategies are merely advisory or non-binding." Article 7 imposes a binding obligation on Member States to establish national strategies that are consistent with CADA. Failure to do so, or to align with Union objectives, could lead to regulatory friction, reduced support for national AI initiatives, and potential scrutiny from the Commission regarding the consistency of national measures.
  • "The list of priorities is fixed." The operational objectives, or "grand challenges," are not static. Article 6(4) empowers the Commission to adopt delegated acts to amend Annex I to reflect technological and market developments. Organisations must remain agile to adapt to these updates.

Related

This is general information about a draft EU regulation, not legal advice.