European Tech Map: The Guide to European Digital Sovereignty
Early explorers venturing into unknown territories often relied on rough maps, sometimes completely invented. Not because the land beneath their feet was unreal, but because no one had ever truly mapped it. It's a metaphor that fits the European tech ecosystem of 2025 with surprising precision: the infrastructure is there, the companies exist, the products work. The problem is that no one knows where they are.
The share of American providers in the European cloud market hovers around 70%, while European providers have slipped to about a 13% market share, a 27 percentage point drop since 2017. This is a striking figure, especially when compared with the widespread perception that "European alternatives do not exist." That perception, repeated in CTO meetings, public procurement tenders, and startup decisions, is both understandable and wrong. Understandable because if you don't know an alternative, you can't choose it. Wrong because searches for European alternatives have increased by 660% year-on-year, and the European Alternatives site recorded an 1,100% increase in visitors during 2025. The demand is there. It's the information supply that's missing.
This is where European Tech Map comes in—an interactive directory of European technology companies that aims to be a systematic response to a visibility problem. It's not a political manifesto or an institutional project funded by Brussels. It's something simpler and, perhaps for that very reason, more effective: a platform that includes an interactive map of tech companies by European country and a directory that allows users to search for direct alternatives to American products and services.
Who Drew the Map
The founder, Dante Emilio Grassi, is a consultant based in Sweden with a background spanning finance, artificial intelligence, and machine learning. The project is an independent, crowd-sourced initiative, not affiliated with European institutions. Grassi built the platform in bootstrapped mode—a startup term indicating a project grown without external funding, driven by the founder and the community gathered around it.
The genesis was almost accidental, as often happens with the most interesting projects. While analyzing incoming data, Grassi discovered that categories everyone assumed were dominated by Americans actually had ten or more European alternatives, with founders from Estonia, Bulgaria, and Portugal building world-class tools. The problem wasn't the quality of the European product. It was its systemic invisibility. As Grassi himself writes in the platform's presentation, cited by several industry observers: digital sovereignty begins with choices, and choices require that alternatives be visible. It's an elegant formula describing a real short circuit.
Today the platform counts, according to the most updated available data: about 1,898 European technology companies, distributed across 37 countries, organized into 79 categories, with alternatives to 856 known American products. A snapshot that is constantly updated, because anyone can report a company or propose corrections to the database. The community model doesn't guarantee completeness, but it guarantees vitality.
What Counts for Inclusion
A directory is only as useful as its inclusion criteria are reliable. And here, European Tech Map makes precise choices that are worth examining without compromise.
Companies must be headquartered in Europe; this includes EU member states, EEA countries like Norway and Iceland, and other European countries like Switzerland and the UK. However, geographical location alone isn't enough: a company registered in the USA cannot be listed as a European provider, even if the founders or employees are European. This is a distinction with concrete legal implications, not just nominal ones. A startup founded by an Italian but incorporated in Delaware remains subject to American jurisdiction, with everything that entails in terms of regulatory obligations and data access.
The platform focuses on B2B providers, excluding purely consumer applications. A central criterion is transparency about where data is stored and processed: companies must clearly document whether the service is hosted in the EU or outside, and on what infrastructure. On this point, there's an important nuance: services running on hyperscalers like AWS, Azure, or Google Cloud are not automatically excluded, but they must document it explicitly. It's a reasonable compromise with market reality—many European startups use American infrastructure—but it opens a gray area that we will return to.
Another criterion concerns the ownership structure: companies with majority stakes outside Europe can be included but must declare it. The goal is transparency about who controls the company and under which legal frameworks it operates.
The platform also introduces a Verified Status, which is not equivalent to a quality recommendation or a GDPR compliance certification, but confirms that some basic information has been verified: legal headquarters, ownership structure, information on data residency, and public documentation on privacy and security. The platform explicitly emphasizes that this status does not guarantee service quality or regulatory compliance. Companies should continue to conduct their own due diligence. This intellectual honesty is not always found in industry directories, where the temptation of digital sovereignty green-washing is always lurking.
Where Europe Keeps Pace
Looking at the distribution of categories on the map is an instructive exercise in where European tech is truly competitive and where the ecosystem remains sparse.
The most populated categories are AI and machine learning, cloud computing, cybersecurity, productivity tools, accounting and finance software, DevOps platforms, e-commerce infrastructure, and communication solutions. It's no surprise that cybersecurity is among the densest entries: Europe has a long-standing tradition in the sector, with companies like Bitdefender (Romania), F-Secure (Finland), and a constellation of enterprise security specialists across the continent.
The surprise, perhaps, is the vitality of the AI category. Common prejudice holds that artificial intelligence is an American and Chinese domain, with Europe reduced to an observer. The numbers tell a different story, albeit with necessary nuances. Mistral AI, whose valuation has reached billions of euros, attracting investors like Andreessen Horowitz and Nvidia, is the most visible example. But Mistral Forge, the system that allows organizations to train language models on their own institutional knowledge, shows a more interesting direction for the theme of sovereignty: not just building alternative models, but building them so that proprietary knowledge remains under the control of the client company, on European infrastructure.
Geographically, the European technology landscape is spread across the continent. The countries with the highest number of listed companies are Germany, the Netherlands, Sweden, France, the UK, Switzerland, Spain, Romania, Belgium, and Austria. This distribution refutes the narrative of European tech being concentrated in a couple of hubs and reflects the continent's structural and cultural diversity. Estonia and Bulgaria, to give two examples that Grassi explicitly cites, produce world-class startups that rarely appear in the tech conversations of Western capitals.
The Invisible Knot: AI and Infrastructure
One aspect makes European Tech Map particularly relevant in 2026, going beyond the logic of a simple software directory. Modern artificial intelligence is not a standalone application running on a laptop. It's a system that depends on deep and interdependent technological layers: cloud for training and inference, storage for datasets, observability tools to monitor models in production, and communication and collaboration pipelines for the teams building them. Choosing a European stack for your company isn't just about using an alternative to Slack or Google Analytics. It potentially means choosing where the data feeding your models is processed, who controls the infrastructure they run on, and which jurisdiction they fall under in case of dispute or government request.
The Leonardo 2026 Report on Italy in the AI Era precisely captures this structural short circuit: Italian spending on AI software and services reached 1.2 billion euros in 2024, a 58% year-on-year growth, while dependence on non-European providers for the underlying infrastructure remains almost unchanged. Investment is flowing into AI, but the AI runs on American cloud. It's like building an Italian-designed car around an engine whose production and service you don't control.
This isn't an academic issue. In the fall of 2025, service disruptions from large hosting providers like Amazon Web Services and Cloudflare affected millions of websites worldwide, highlighting the critical dependence on a few infrastructure providers, almost all headquartered in the United States. Several EU member states, including Austria, Germany, and France, subsequently signed concrete commitments in a declaration on digital sovereignty. This isn't about technological nationalism; it's about resilience. A system that depends on a single point of failure, or a single foreign legal system, is by definition fragile.
Devstral, Mistral's code-optimized model, and more generally the ecosystem the French company is building around model training, inference, and customization, show that competition in the AI layer is not lost. But models alone are not enough. Data centers, networks, observability tools, and data pipelines are also needed. And this is where the European gap is most pronounced and hardest to bridge in the short term.
The CLOUD Act and the Elephant in the Room
To understand why the choice of provider isn't merely a technical or commercial issue, one must take a step back into the law. The CLOUD Act—Clarifying Lawful Overseas Use of Data Act—is a 2018 American federal law that allows U.S. authorities to request access to data held by American companies, regardless of where that data is physically stored. The strategically relevant point is that these requests disregard the geographical location of the storage: whether the data is in Frankfurt, Dublin, or Amsterdam is irrelevant from the CLOUD Act's perspective if the provider is an American company.
This creates a concrete legal tension with the GDPR, particularly with Article 48, which prohibits the transfer of personal data to authorities in third countries except through recognized legal channels. The European Union responded with the Data Act, which entered into application in September 2025. Chapter VII requires cloud providers operating in the EU to implement technical, legal, and organizational measures to prevent unauthorized access by non-European governments to non-personal data stored in the EU. This is an important regulatory response, although the structural conflict remains open: legal challenges take time, have uncertain outcomes, and do not suspend disclosure obligations during the proceedings.
The most robust technical solution, according to several security experts, is architectural: encryption managed by the European client, with keys that never transit through the American provider's servers. But this solution requires skills and resources that not all organizations can afford, and above all, it requires awareness of the problem, which is exactly what's missing when you don't even know European alternatives exist.
The paradox is subtle but important: large American hyperscalers have invested in solutions like Microsoft's EU Data Boundary, Google Cloud's Sovereign Controls, and AWS's Nitro architecture, which create more robust boundaries for European data. These are real steps, but they don't resolve the core issue: as long as the provider is headquartered in the United States, American jurisdiction applies to the company, not to the data center. Digital sovereignty isn't about where the servers are, but about who controls the infrastructure and under what law they answer.
In this context, Grassi's map stops being just a list of software and becomes a tool for geopolitical orientation. Knowing which cloud providers are actually European—incorporated in Europe, with European capital, under European jurisdiction—is the prerequisite for building infrastructure stacks that resist not only technical downs but also extraterritorial legal pressures.
Promise of Sovereignty, Reality of the Market
Facing the limits of a project is the most honest way to evaluate its real value. European Tech Map has several, and they are worth naming plainly.
The first limit is structural: it's a self-reported directory. Companies propose themselves, and verification, while it exists for the Verified Status, doesn't reach the level of a technical audit or independent certification. There are no performance benchmarks, no systematic functional comparisons, and no product maturity evaluation methodology. A startup with a product fresh out of beta and a company with ten years of enterprise development can stand side-by-side in the same category, without the directory explicitly signaling it. For those looking for a serious procurement tool, this means the map is a starting point, not a destination.
The second limit concerns the aforementioned infrastructure gray area: European companies running on AWS or Azure are included, provided they declare it. It's a pragmatic choice—excluding them would halve the database—but it introduces ambiguity into the very concept of a "European alternative." A video-conferencing application founded in Berlin but hosted on AWS Virginia does not offer the same guarantee of sovereignty as an equivalent hosted on Hetzner or OVHcloud. The distinction matters, and the map doesn't always make it immediately visible to the less expert user.
The third limit is more systemic and concerns the competitiveness gap in some categories. The investment needed for significant European digital independence is estimated at between 500 and 700 billion euros, and the fragmentation of the European market, with national champions and regional solutions instead of continental platforms, works against the economies of scale that make modern cloud computing economically sustainable. Listing existing alternatives is useful, but it doesn't change the reality that in some areas—frontier large language models, high-density computing infrastructure for AI, development platforms with ecosystems of millions of users—the gap with American leaders remains pronounced.
That said, the opposite risk is using perfection as an excuse for doing nothing. The real obstacle to using European alternatives isn't a lack of quality or availability; it lies in procurement logic, market power, and established habits. Companies and public administrations automatically turn to the same American platforms not because alternatives don't exist, but because they don't know they exist, because purchasing processes are calibrated for already established providers, and because migration costs are perceived as prohibitive. Breaking this vicious cycle is exactly what a well-built directory can do.
A Litmus Test, Not a Solution
In urban planning, there's the concept of wayfinding: the science of designing orientation systems that help people navigate complex spaces. Good signage doesn't build the city, but it makes the city navigable. European Tech Map works similarly regarding the continent's tech ecosystem: it doesn't create the European companies it lists, doesn't fund them, and doesn't guarantee their quality. But it makes them findable, and making something findable is the prerequisite for any other action.
The context in which this project operates is rapidly becoming more urgent. On November 18, 2025, EU member states adopted a Declaration for European Digital Sovereignty—a non-binding commitment centered on the goal of strengthening the continent's digital autonomy to support economic resilience, social prosperity, competitiveness, and security. On the regulatory front, the Data Act has entered into application, the European Commission has launched market investigations into AWS and Microsoft Azure as potential gatekeepers under the Digital Markets Act, and several states—France being particularly decisive—have announced plans to reduce dependence on Microsoft in their public administrations.
Analyses on the state of the European AI ecosystem converge on one point: Europe doesn't lack talent or, increasingly, competitive technology. What's missing is scale, visibility, and the ability to build deep internal markets that allow European companies to grow without having to migrate to Silicon Valley to find enterprise clients willing to bet on them. Grassi's directory doesn't solve the scale problem—that requires capital, industrial policies, and deeper capital markets, as analyzed when looking at European startups in 2025. But it contributes to visibility, and visibility is the first step.
With about 2,400 mapped companies, structured into over 80 categories and distributed across 40 markets, the platform has rapidly evolved into a useful tool for decision-makers seeking software solutions developed in Europe. The next step, announced with the European Tech Map Summit planned for 2027, is to transform the directory from a discovery layer to business infrastructure: not just finding European alternatives, but creating the conditions for direct encounters between sellers and buyers, between startups and enterprise CTOs willing to change their stack.
The hardest questions remain open. Is digital sovereignty a realistic goal for a continent fragmented into twenty-seven national markets with different regulations, languages, and procurement cultures? Or is it destined to remain a political aspiration that clashes with the economic gravity of American hyperscalers, whose R&D investments exceed the GDP of many European states combined? And above all: how much is a European company willing to pay, in terms of functionality, integration, and migration costs, to choose a stack that keeps its data under European jurisdiction?
There are no simple answers. But the first condition for answering these questions in an informed way is knowing what exists. European Tech Map, with all its limits, does exactly that: it puts the options on the table. The rest—the choices, the investments, the policies—depends on actors much larger than a directory managed by a Swedish consultant with a good idea and the tenacity to build it from scratch. This, in turn, says something quite eloquent about the state of European digital sovereignty: we are at the point where the map is still made by an individual, not a system.
Data updated to May 2026. Statistics on the European cloud market are market estimates subject to revision. European Tech Map inclusion criteria are subject to update by the platform team.