OrganisationGB

Open Rights Group

UK civil society organisation campaigning for digital rights, privacy, and tech accountability.

Last refreshed: 19 April 2026 · Appears in 1 active topic

Key Question

What did the Open Rights Group say about UK cloud lock-in and national security?

Timeline for Open Rights Group

#215 Apr

Published Tech Giants and Giant Slayers report warning US-tech dependency is a national security risk

European Tech Sovereignty: ORG brands UK tech dependency a risk

View full timeline →

Follow European Tech Sovereignty →

Common Questions

What is the Open Rights Group?: The UK's leading digital rights civil society organisation, founded 2005, campaigning on privacy, surveillance, and tech accountability.Source: Open Rights Group / The Register 15 April 2026
What did the Open Rights Group say about UK cloud dependency?: In April 2026 ORG published 'Tech Giants and Giant Slayers', arguing Britain's US tech dependency is a national security risk, citing the CMA estimate of £500m wasted annually on Cloud lock-in.Source: The Register 15 April 2026
What is the US CLOUD Act and why does it matter for UK data?: The US CLOUD Act allows US authorities to compel US-headquartered providers to disclose overseas data without the host country's consent — cited by ORG as a concrete UK sovereignty vulnerability.Source: Open Rights Group report, April 2026
Is the UK too dependent on US cloud companies?: The Open Rights Group argues yes: UK dependence on AWS, Azure, and Google Cloud creates CLOUD Act exposure and costs £500m a year in lock-in waste, with Palantir contracts expanding rather than shrinking.Source: Open Rights Group April 2026

Background

The Open Rights Group published 'Tech Giants and Giant Slayers' on 15 April 2026, branding Britain's decade of US tech dependency a national security vulnerability and citing a Competition and Markets Authority estimate that the UK wastes £500m a year on Cloud services due to lock-in and switching barriers . The report flagged the US CLOUD Act as a mechanism that can compel US-headquartered providers to disclose UK data without UK consent, and cited Microsoft's documented shutdown of email services for individuals hit by ICC-related US sanctions as concrete precedent.

Founded in 2005, the Open Rights Group is Britain's leading civil society organisation on digital rights. It campaigns on mass surveillance, online censorship, biometric data use, and data protection, operating as a counterweight to both government overreach and corporate data extraction. Its Patrons and supporters include academics, lawyers, and technologists; it is funded by individual donors and small grants rather than corporate sponsorship.

The April 2026 report represents a significant broadening of ORG's framing: from privacy rights to national security risk. By citing the CMA Cloud lock-in figure alongside CLOUD Act exposure and Palantir contract expansion, ORG is making the case that Cloud dependency is not merely a commercial or regulatory problem but a structural security one .

How the World Sees Them

UK Government

Has not directly responded to ORG's national security framing; DSIT launched Sovereign AI model-layer fund without a matching cloud-layer instrument.

UK civil society

ORG's shift from privacy rights to national security framing broadens the coalition for cloud diversification beyond data-protection advocates.