SUSE Cloud Sovereignty Framework Self Assessment

Sovereignty by Design

This assessment practices what it preaches

No Signup Required

No identity data collected. Start immediately.

Data Stays in Your Browser

Full control over your data. Nothing sent to servers.

Instant PDF Report

Export your results anytime, no dependencies.

How It Works

Step 1: Answer

Answer 32 questions across 8 sovereignty areas using the SEAL scale (0-4).

Step 2: Score

See your gaps and compliance level with weighted scoring.

Step 3: Improve

Get SUSE solution recommendations for each gap.

The SEAL Rating Scale

Rate your organization using this 0-4 scale from the EU Cloud Sovereignty Framework

SEAL-4: Full Digital Sovereignty

Technology and operations under complete EU control, with no critical non-EU dependencies

SEAL-3: Digital Resilience

EU actors exercising meaningful influence; operations under marginal non-EU control

SEAL-2: Data Sovereignty

EU law applicable, but material non-EU dependencies remain (indirect foreign control)

SEAL-1: Jurisdictional Sovereignty

EU law formally applies, but operations are under exclusive non-EU control

SEAL-0: No Sovereignty

Service/operations under exclusive control of non-EU third parties, governed entirely by non-EU jurisdictions

8 Sovereignty Objectives (SOV)

Aligned with the EU Cloud Sovereignty Framework

SOV-1

Strategic Sovereignty

15%

SOV-2

Legal & Jurisdictional

10%

SOV-3

Data & AI

10%

SOV-4

Operational

15%

SOV-5

Supply Chain

20%

SOV-6

Technology

15%

SOV-7

Security & Compliance

10%

SOV-8

Environmental

5%

Key Definitions

Cloud Sovereignty: The degree of control an organization maintains over its data, applications, and infrastructure in cloud environments, particularly regarding jurisdictional and regulatory compliance.
Digital Sovereignty: The ability of a state or organization to maintain independence and self-determination in the digital realm, including control over digital infrastructure, data, and technology choices.
Data Sovereignty: The concept that data is subject to the laws and governance structures of the jurisdiction in which it is collected or processed, ensuring legal control over data handling and storage locations.
EU Cloud Sovereignty Framework: A European Commission initiative that defines standards for digital sovereignty in cloud computing, helping organizations ensure control over their data, technology choices, and compliance with European regulations.

Scoring Methodology

Weighted Scoring

Each SOV objective contributes to your overall score based on its weight (5% to 20%). Supply Chain (SOV-5) carries the highest weight at 20%, reflecting its critical importance in the framework.

Critical Violations

When any answer scores SEAL-2 or below on fundamental sovereignty questions, it triggers a critical violation warning. These represent significant gaps that should be prioritized regardless of overall score.

Overall Score Calculation

Your sovereignty score (0-100%) is calculated using weighted averages across all 8 objectives. The formula considers both your average SEAL level per objective and the minimum score to identify areas needing immediate attention.

Frequently Asked Questions

What is the SEAL rating scale?

SEAL (Sovereignty Evaluation and Assurance Level) is a 0-4 rating scale used in the EU Cloud Sovereignty Framework. SEAL-0 means no sovereignty (non-EU control), SEAL-1 is jurisdictional sovereignty, SEAL-2 is data sovereignty, SEAL-3 is digital resilience, and SEAL-4 represents full digital sovereignty with complete EU control.

What are the 8 Sovereignty Objectives (SOV)?

The 8 SOV objectives are: SOV-1 Strategic Sovereignty (15%), SOV-2 Legal & Jurisdictional (10%), SOV-3 Data & AI (10%), SOV-4 Operational (15%), SOV-5 Supply Chain (20%), SOV-6 Technology (15%), SOV-7 Security & Compliance (10%), and SOV-8 Environmental (5%). Each is weighted according to its importance in the framework.

How is my data handled during the assessment?

All assessment data stays in your browser. No data is stored on SUSE systems. You can export your results as a PDF report at any time. This tool practices sovereignty by design - no signup required, full control over your data.

What is a critical violation?

A critical violation occurs when any answer scores SEAL-2 or below on questions related to fundamental sovereignty requirements. Critical violations indicate significant gaps that should be prioritized, as they represent areas where non-EU dependencies or control issues pose substantial risk.

How is the sovereignty score calculated?

Your overall sovereignty score (0-100%) is calculated using weighted averages across all 8 SOV objectives. Each objective has a specific weight: Supply Chain (20%), Strategic/Operational/Technology (15% each), Legal/Data & AI/Security (10% each), and Environmental (5%). The minimum SEAL level across questions also factors into critical violation detection.

Who created this tool?

This Cloud Sovereignty Framework Self Assessment Tool was created by SUSE, a global leader in enterprise-grade open source solutions. SUSE is a European-headquartered company committed to helping organizations achieve digital sovereignty through open source technologies like SUSE Linux Enterprise and Rancher Prime.

About the EU Cloud Sovereignty Framework

The EU Cloud Sovereignty Framework (CSF) is a European Commission initiative that defines standards for digital sovereignty in cloud computing. It helps organizations ensure control over their data, technology choices, and compliance with European regulations.

This assessment tool provides a comprehensive Now-Next-Gap Analysis of your organization's sovereignty posture across 8 key objectives. You'll answer questions using the SEAL scale (0-4), resulting in a weighted sovereignty score and actionable recommendations using SUSE technologies.