Countries

Digital snapshot – key policies and laws

The country’s current digital policy framework is set by Sweden’s Digitalisation Strategy 2025–2030, which covers digital skills, business digitalisation, public administration, welfare services and connectivity, with AI, data access and security treated as cross-cutting issues. The European Commission’s 2025 Digital Decade country report describes Sweden as having good digital infrastructure and high basic and advanced IT skills. It also notes that 85% of Swedes believe digitalisation of public and private services makes their lives easier. 

One-hour takedown?

Sweden is considering a law that would allow police to order online platforms to remove content used to recruit children and young people into serious crime within one hour. The government says the proposal would make Sweden the first EU member state to introduce such a measure outside the terrorism-content framework. Justice Minister Gunnar Strömmer described the proposal as making Sweden the most ‘offensive’ in the EU on this issue, since platforms that fail to comply could face sanctions of up to SEK 5 million. Supporters see it as a targeted response to the growing use of social media and encrypted channels by criminal networks to reach minors. However, the proposal also raises wider digital governance questions: how removal orders are reviewed, how platforms assess borderline content under time pressure, what safeguards protect lawful expression, and how the system fits with the EU Digital Services Act.

AI is now a central governance priority. Sweden adopted its first comprehensive AI Strategy in February 2026, aiming to place the country among the world’s top 10 AI nations while improving public-sector efficiency, business conditions and research capacity. An action plan accompanies the strategy, while Sweden is also adapting national oversight to the EU AI Act. The AI Act and GDPR apply in parallel when personal data is used in AI development or deployment.

Sweden’s National Strategy for Cybersecurity 2025–2029 aims to maintain essential public services during severe cyber incidents, while the foreign-policy strategy ‘Sweden in a digital world‘ links cyber, digital technologies, democracy, security and competitiveness. Digital connectivity in Sweden builds on the broadband strategy, A Completely Connected Sweden by 2025 and the 2025–2030 digitalisation strategy. PTS (Swedish Post and Telecom Authority) reported that 5G was present in over half of all mobile subscriptions by mid-2025.

Sweden’s data, cloud and privacy governance is anchored in the GDPR (General Data Protection Regulation), national supplementary legislation and supervision by IMY (Swedish Authority for Privacy Protection). In May 2026, the government adopted Sweden’s first cloud policy for public administration, intended to strengthen security, reduce dependencies, improve control over data and make it easier for authorities, municipalities and regions to change digital solutions.

Sweden’s e-commerce framework rests on the E-Commerce Act, consumer protection rules for distance contracts, GDPR, electronic communications law and the EU platform regulation. Sweden’s payments market is almost entirely digital, with the Act on Distance Contracts and Off-Premises Contracts (SFS 2005:59) favouring cards and mobile payments, and leaving cash payments in about 1 in 10 purchases.

Related news on dig.watch

• US and Sweden expand cooperation on AI and strategic technologies
• Sweden considers Bitcoin for national reserves
• Sweden plans to integrate facial recognition technology in police
• Sweden and Denmark tackle gang recruitment on social media
• Undersea cable damaged between Latvia and Sweden

Sweden’s Permanent Mission to the UN in Geneva:

The Permanent Mission of Sweden to the UN Office and other international organisations in Geneva represents Sweden in Geneva-based multilateral forums. Its official Sweden Abroad page lists the mission at 82, rue de Lausanne, Geneva, with contact details and links to its social media channels. The UN Geneva Blue Book also records the mission under the same name and address.

Official UNOG website: https://www.ungeneva.org/en/blue-book/missions/member-states/sweden

EMBASSY AND PERMANENT MISSION TO THE UN – GENEVA

Twitter/X profile: https://x.com/SwedenGeneva

Facebook page

Consult Sweden’s digital strategies and regulations

Here you can explore the country’s main digital strategies, laws, and regulations by simply asking the chatbot, which is designed to help you quickly find relevant documents and understand the country’s digital policy landscape.

Main digital policies and regulations in the country:

• Sweden’s Digitalisation Strategy 2025–2030 / Sveriges digitaliseringsstrategi 2025–2030
• Sweden’s AI Strategy
• Action Plan for Sweden’s AI Strategy
• A New Era of Cybersecurity — National Strategy for Cybersecurity 2025–2029
• Sweden in a Digital World — A Strategy for Sweden’s Foreign and Security Policy on Cyber and Digital Issues
• Data strategy – en underutnyttjad resurs för Sverige: En strategi för ökad tillgång av data för bl.a. artificiell intelligens och digital innovation
• Nationell färdplan för det digitala decenniet / National Digital Decade Strategic Roadmap
• Sweden’s National Semiconductor Strategy 2035

Follow Sweden’s digital submarine cables

Digital snapshot – key policies and laws

On

Digital infrastructure is now one of Portugal’s strongest governance assets. The country combines extensive fibre and 5G coverage with a growing Atlantic role in submarine cables, including Google’s planned Nuvem route through Sines and the Azores and the 2Africa landing at Carcavelos. In 2026, Portugal approved a National Data Centre Plan and a National Plan for Sovereign Cloud, aiming to expand compute capacity while addressing energy use, licensing, resilience and public-sector control over sensitive systems. This gives Portugal a clearer role as a European edge for cloud, AI and intercontinental connectivity, but grid capacity and sustainability remain constraints.

Portugal performs well in EU digital indicators, particularly digital public services, connectivity and e-health records. The European Commission’s 2025 Digital Decade report notes stable progress in digital public services and solid connectivity, while Portugal’s national roadmap includes 157 measures worth €2.15 billion. Government reporting also says Portugal rose from 14th to 8th place in the 2025 European eGovernment Benchmark. The weaker areas are familiar across Europe: enterprise AI adoption, advanced digitalisation among smaller firms and uneven basic digital skills.

Portugal’s legal and regulatory framework is closely aligned with EU law. The GDPR is implemented through Law No. 58/2019 and is supervised by the CNPD, which has taken visible action in high-risk cases, such as the temporary suspension of Worldcoin’s biometric data collection in 2024. In cybersecurity, Decree-Law No. 125/2025 transposed NIS2 and introduced a new cybersecurity legal regime, while CNCS remains the central national authority. Portugal also implemented the Digital Services Act through Law No. 12-A/2026, designating ANACOM as the Digital Services Coordinator and assigning related roles to media and data protection regulators.

Portugal’s digital economy is supported by e-commerce rules, an open data policy and digital public infrastructure. Decree-Law No. 7/2004 remains the core e-commerce framework, now updated by the DSA implementation law, while consumer protection, VAT rules, privacy and platform regulation shape online trade. The national open-data portal and data-governance reforms have also gained visibility: Portugal was recently described by its digital policy portal as a European ‘Trendsetter’ in open data, with strong performance on impact, metadata and portal quality. Overall, Portugal’s digital governance is less about a single flagship reform than about connecting AI, data, cloud, cybersecurity, digital services and connectivity into one EU-compatible policy stack.

Related news on dig.watch

Portugal’s Permanent Mission to the UN in Geneva:

Official UNOG website:

EMBASSY AND “””””””””” PERMANENT MISSION TO THE UN – GENEVA

Twitter/X profile:

Facebook “”””””””””” page

Consult Portugal’s digital strategies and regulations

Here you can explore the country’s main digital strategies, laws, and regulations by simply asking the chatbot, which is designed to help you quickly find relevant documents and understand the country’s digital policy landscape.

Main digital policies and regulations in the country:

Follow Portugal’s digital submarine cables

The country benefits from near-universal internet access, a highly developed fibre-optic network, and one of the earliest and most extensive 5G deployments in Europe. The Ultra-High-Speed Broadband Strategy aims to provide 1 Gbps coverage nationwide, including in rural areas, while POST Luxembourg leads the deployment of AI-powered software-defined access networks. The country hosts multiple Tier III and IV data centres and operates MeluXina, a national high-performance computing facility, which supports research, AI training, and simulations.

Luxembourg’s government places strong emphasis on digital public services, with its electronic governance strategy targeting full digitalisation of administrative procedures. The ‘once-only’ principle, interoperability between government systems, and inclusion measures are core pillars of its approach, managed by the Ministry for Digitalisation and the CTIE. As of 2024, over 90 percent of public services are available online. In terms of regulation, Luxembourg adheres to the EU framework on digital services and markets, while also shaping national strategies for emerging technologies, including AI, quantum computing, and secure data governance.

The country’s cybersecurity architecture is guided by the National Cybersecurity Strategy IV, which focuses on strengthening infrastructure resilience, building digital trust, and supporting the secure digital economy. Key players such as GOVCERT, CIRCL, and MILCERT coordinate responses to cyber threats across sectors. Luxembourg also engages in international cyber exercises and collaborates with EU, NATO, and Benelux partners. The private sector is involved through platforms like SECURITYMADEIN.LU, and research institutions participate in threat intelligence sharing.

Data protection is overseen by the CNPD, which enforces the GDPR and national data protection law. Luxembourg is known for pioneering GDPR certification mechanisms, such as the GDPR-CARPA framework, and has been involved in notable enforcement actions, including the upheld fine against Amazon. The CNPD provides guidance on AI regulation and coordinates with EU-level bodies to monitor emerging risks.

Consult Luxembourg’s AI and digital strategies and regulations

Follow Luxembourg’s digital infrastructure

Digital Snapshot – Key Policies and Laws

Lithuania’s digital governance is strongly shaped by the EU frameworks and coordinated through national planning documents, including the National Digital Decade Roadmap and the broader state digitalisation programme context referenced in the Commission’s country reporting. The European Commission’s Digital Decade country reporting notes that Lithuania performs consistently well on digital public services, while still needing continued effort on some targets (e.g. skills and connectivity).

Regarding AI policy, Lithuania has a national AI strategy, ‘A Vision of the Future‘, and is building an AI regulatory sandbox through the Innovation Agency to support testing and compliance. In cloud/public-sector IT, the State Digital Solutions Agency (VSSA) has announced plans to use public cloud services for state information resources in line with national management rules.

On networks, Lithuania pairs domestic rollout with EU-linked connectivity targets. It has an official Ultra-fast Broadband Development Plan 2021–2027. For mobile, the government adopted ‘Guidelines for the Development of 5G in Lithuania 2020–2025‘.

Lithuania’s internet infrastructure includes multiple peering points and a small number of critical international routes. Internet Society Pulse reports 4 active IXPs in Lithuania, with member networks concentrated in Vilnius, supporting resilience and keeping local traffic local. The country is also connected via a Baltic Sea submarine fibre cable. In November 2024, Telia reported damage to the undersea cable between Lithuania and Sweden, with traffic rerouted to restore service.

Critical Infrastructure management lesson

Lithuania–Sweden submarine cable damage: In mid-November 2024, Lithuania’s telecom operator Telia Lietuva reported that the undersea fibre-optic cable linking Lithuania and Sweden had been damaged (‘cut’), temporarily reducing Lithuania’s international internet capacity by about one-third. The incident did not result in a prolonged nationwide outage because traffic was rerouted to alternative paths, illustrating that regional connectivity planning relies on redundancy as much as on any single cable. Swedish and Lithuanian defence ministers publicly framed the damage as a critical-infrastructure concern and noted that authorities were pursuing a thorough investigation, reflecting the wider Baltic pattern of heightened attention to undersea assets after multiple cable incidents in the region.

For online platform governance and e-commerce intermediaries, Lithuania follows the EU Digital Services Act (DSA) model, with national enforcement organised around a designated coordinator. Namely, the Communications Regulatory Authority (RRT/CRA) publicly described its role in becoming the national coordinator for DSA implementation. In consumer-facing e-commerce, the State Consumer Rights Protection Authority (VVTAT) is the core national body for consumer protection and complaints handling.

Cybersecurity is anchored in a national strategy plus a detailed statutory framework. Lithuania’s National Cyber Security Strategy, approved by Government Resolution No. 818, sets objectives across public and private sectors. The Law on Cyber Security establishes institutions, powers, and duties for cyber policy and incident management.

On data and emerging tech, Lithuania applies GDPR with national ‘top-up’ rules and a dual-supervision model: the State Data Protection Inspectorate (VDAI) is the leading authority, with the Office of the Inspector of Journalist Ethics supervising specific expression-related contexts; VDAI explains this split in its own reporting.

Consult Lithuania’s AI and digital strategies and regulations

Ask the Diplo chatbot everything you want about digital strategies and regulations in the country ⬇️

Lithuania’s permanent mission to the UN:

Lithuania’s Permanent Mission in Geneva represents and defends Lithuania’s interests at the UN Office at Geneva and other international organisations, supports Lithuania’s participation in multilateral diplomacy, and serves as a reporting and coordination link between Geneva-based bodies and Lithuanian institutions. The Mission’s mandate also covers cooperation with Geneva organisations across areas such as human rights, migration and humanitarian issues, trade, and disarmament-related work, and it includes Lithuania’s representation to the World Trade Organisation within the Mission’s staffing structure.

Official UN website: https://www.ungeneva.org/en/blue-book/missions/member-states/lithuania

Twitter/X: https://x.com/LtGva

Facebook: https://www.facebook.com/LithuanianMissionGeneva/about/

Related news on dig.watch

• Lithuania selects Procivis for EU digital ID wallet sandbox
• Ukraine and Lithuania enhance trade ties with digital customs agreement through EU4Digital programme
• Lithuania questions legality of Robinhood’s new tokens
• Kenya and Lithuania to lead intergovernmental process to define modalities for WSIS+20 review

Follow Lithuania’s digital submarine cables

Digital snapshot – key policies and laws

The Netherlands ranks among Europe’s stronger digital performers. The European Commission Digital Decade country report states that its connectivity infrastructure is in good shape, with excellent 5G services, a strong digital-skills profile, and a clear technology focus on semiconductors, AI, quantum, and cybersecurity.

At the top of the policy stack is the Dutch Digitalisation Strategy (NDS), published in 2025, which sets six cross-government priorities: sovereign cloud, responsible data use and sharing, AI, citizen- and business-centred services, digital resilience, and digital skills for civil servants.

The economic and infrastructure side is framed by the Digital Economy Strategy, which aims for a resilient, entrepreneurial, innovative and sustainable digital economy in which everyone can participate. It ties digital growth to secure, reliable, high-quality infrastructure, support for AI, quantum, blockchain and 5/6G, better enforcement of the EU digital rules, and reducing the connectivity gap for remote addresses.

On rights and regulation, the Netherlands combines strong EU alignment with visible national enforcement. Data protection is governed by the GDPR and the Dutch UAVG (the GDPR Implementing Act), and is overseen by the Autoriteit Persoonsgegevens (AP). In AI governance, the country stands out for its public Algorithm Register, where government bodies publish information on impactful algorithms, including high-risk AI systems. In platform governance, the ACM (Netherlands Authority for Consumers and Markets)has been fully authorised since 4 February 2025 to enforce the Digital Services Act.

A key feature of the Dutch profile is that digital governance is increasingly tied to security and geopolitics. The National Cybersecurity Strategy 2022–2028 frames cybersecurity as a whole-of-society priority, while the 2024 expansion of export controls on advanced semiconductor manufacturing equipment showed how Dutch policy can shape global tech supply chains.

Microchips, macropower

Home to ASML, the world’s leading supplier of advanced chipmaking equipment, the Netherlands occupies a pivotal position in the semiconductor value chain. In September 2024, the Dutch government expanded export controls on advanced manufacturing equipment, requiring national authorisation for the export of a key technology in the semiconductor manufacturing process – deep ultraviolet lithography equipment. Framed as a national security and foreign policy measure, the decision effectively aligned the Netherlands with broader Western restrictions on technology transfers to China. This shows how a single country can exert significant influence on global digital development by controlling critical industrial chokepoints.

The Netherlands is also advancing a more sovereignty-minded approach to cloud and public digital infrastructure. Under the NDS (Netherlands Digitalisation Strategy), cloud is a priority, with the government arguing for a government-wide sovereign cloud service to better govern public data and reduce dependence on a small number of suppliers.

Related news on dig.watch

• Dutch firms rank among EU leaders in sustainable ICT
• Dutch court increases pressure on Meta over non-profiling social media feeds
• Dutch intelligence warns about phishing attacks on Signal and WhatsApp
• AML breach triggers major fine for a Netherlands crypto firm
• AI-EFFECT builds EU testing facility for AI in critical energy infrastructure

Netherlands’ Permanent Mission to the UN in Geneva:

The Netherlands’ Permanent Representation in Geneva represents the Kingdom of the Netherlands at the UN, the World Trade Organisation, and other international organisations in Geneva. It works on issues including human rights, humanitarian aid and migration, trade and sustainable development, health, arms control, and multilateral diplomacy. The mission is currently headed by Ambassador Erica Schouten, who took up the post in August 2025.

Official UNOG website: https://www.ungeneva.org/en/blue-book/missions/member-states/netherlands

EMBASSY AND PERMANENT MISSION TO THE UN – GENEVA

Twitter/X profile: https://x.com/NLinGeneva

Facebook page

Consult the Netherlands’ digital strategies and regulations

Here you can explore the country’s main digital strategies, laws, and regulations by simply asking the chatbot, which is designed to help you quickly find relevant documents and understand the country’s digital policy landscape.

Main digital policies and regulations in the country:

• The Dutch Digitalisation Strategy (NDS)
• Action Plan for the Netherlands Cybersecurity Strategy 2022–2028
• International Cyber Strategy 2023-2028
• Inter-administrative Data Strategy (IBDS)
• Digital Government Act
• Digital Government Decree
• Wdo Facilities Regulation
• General Data Protection Regulation Implementation Act
• Digital Services Regulation Implementation Act
• Digital Markets Regulation Implementation Act
• Act introducing the Citizen Service Number and Digital Government Facilities for the BES islands

Follow the Netherlands’ digital submarine cables

Explore the map to see the country’s submarine cable connections and how they link the country to regional and global internet infrastructure.

Slovenia has been actively working on digitalising its society and economy, focusing on harnessing the social and economic potential of ICT and the internet for digital growth. Slovenia has also been committed to building a digital economy and society, strongly emphasising internet governance and access, e-government, and digital skills development. The country has been among the top in Europe in terms of internet connectivity and penetration. Slovenia’s approach to internet governance focuses on ensuring a secure, inclusive, and efficient digital environment. This effort is characterized by the integration of various stakeholders, the implementation of comprehensive strategies, and active participation in international forums.

Key Regulatory Bodies

1. Agency for Communication Networks and Services (AKOS): AKOS is the primary regulator for telecommunications, ensuring compliance with both national and EU regulations. It promotes competition, safeguards consumer rights, and oversees the development of internet infrastructure.
2. Information Commissioner: This office is responsible for data protection and access to public information, ensuring adherence to the General Data Protection Regulation (GDPR) and national privacy laws.
3. Ministry of Digital Transformation: This ministry leads the formulation and implementation of digital policies. The Ministry monitors and analyses the state of digital transformation and the information society at the national level. It is responsible for the areas of the information society, electronic communications, digital inclusion, digital competencies, the data economy, management of information and communication systems, and the provision of electronic public administration services. 

Slovenian stakeholders are active participants in various internet governance forums and initiatives at the regional and global levels. Slovenian stakeholders participate in the annual South Eastern European Dialogue on Internet Governance (SEE+) and Dialogue on Internet Governance (EuroDIG) events, which bring together stakeholders from the region to discuss digital policy-related issues and challenges. At the global level, Slovenia is a member of the Internet Governance Forum (IGF). Slovenia also has a national internet governance initiative called SloIGF.

Consult Slovenia’s AI and digital strategies and regulations

Follow Slovenia’s digital submarine cables

Digital snapshot – key policies and laws

Denmark is one of the EU’s most digitally advanced states, with a joined-up public digital infrastructure and a long tradition of common strategies across government, municipalities, and regions. Its new Joint Government Digital Strategy 2026–2029 focuses on user-friendly public services, responsible use of new technologies, digital foundations, digital sovereignty, and the EU digital cooperation. In Denmark, more than 95% of households have access to very-high-capacity networks, and 98% of populated areas are covered by 5G.

Cloud comfort or sovereignty?

Denmark’s digital sovereignty debate has moved from policy language to practical government action. In 2025, the government proposed DKK 80 million for 2026–2029 to strengthen public-sector control over critical digital tools, infrastructure, and dependencies. The move gained wider attention when the Ministry of Digital Affairs began shifting parts of its office software environment away from Microsoft 365 toward open-source alternatives such as LibreOffice, with Linux also tested in some contexts. The initiative does not amount to a wholesale rejection of foreign technology, but it signals a more cautious approach to vendor lock-in, cloud dependence, data control, and service continuity. For one of the world’s most digitised public sectors, the issue is strategic: who controls the software, updates, contracts, data flows, and fallback options on which public administration relies. Denmark’s approach may become a useful European test case for balancing innovation, cost, cybersecurity, interoperability, and sovereignty without closing the door to global technology providers.

AI governance is built around responsible deployment, public-sector use, and aligns with the EU standards. Denmark’s 2024 Strategic Approach to AI sets out initiatives for a public-sector AI taskforce, responsible-AI advice through CAISA (National Centre for Artificial Intelligence in Society), Danish language-model infrastructure, and more accessible Danish text data. The Agency for Digital Government and Datatilsynet also run an AI regulatory sandbox to guide companies and authorities on GDPR (General Data Protection Regulation) and the EU AI Act questions, while the Gefion AI Cloud supercomputer strengthens national capacity for research and innovation.

Cybersecurity, data protection, and platform governance are central to Denmark’s digital model because public services, identity, health, welfare, and communication are highly digitised. Denmark applies the GDPR together with the Danish Data Protection Act, which is supervised by Datatilsynet, and its NIS2 Act, which entered into force on 1 July 2025, with obligations on covered entities for registration, management responsibility, incident reporting, and cybersecurity measures. Denmark also applies the EU Digital Services Act, with the Agency for Digital Government acting as the national enforcement authority.

Denmark’s digital economy benefits from strong connectivity, mature e-commerce, digital payments, and high consumer trust, but regulation is increasingly focused on risks from platforms, scams, children’s online safety, and AI-generated harms. Danish consumer rules give online buyers a 14-day cooling-off period, while the Consumer Ombudsman supervises marketing and consumer-protection rules. Recent developments include a DKK 160 million digital child-protection agreement aimed at creating safer online environments and proposed deepfake protections that give people stronger control over digital imitations of their faces, bodies, and voices, as documented by the Library of Congress.

Related news on dig.watch

• Microsoft expands cloud footprint in Denmark
• EU weighs social media age rules to protect children
• India deepens ties with Finland and Denmark
• Denmark pushes digital identity beyond authentication

Denmark’s Permanent Mission to the UN in Geneva:

Denmark’s Permanent Mission to the UN in Geneva represents the Danish government in Geneva-based international organisations. Its work focuses on human rights, humanitarian issues, health, trade, and disarmament, areas the mission identifies as high priorities for Denmark. The mission also oversees Danish development assistance to Geneva-based organisations and is headed by Ambassador and Permanent Representative Ib Petersen.

Official UNOG website: https://www.ungeneva.org/en/blue-book/missions/member-states/denmark

EMBASSY AND PERMANENT MISSION TO THE UN – GENEVA

Twitter/X profile: https://x.com/DKUNGeneva

Facebook page

Consult Denmark’s digital strategies and regulations

Here you can explore the country’s main digital strategies, laws, and regulations by simply asking the chatbot, which is designed to help you quickly find relevant documents and understand the country’s digital policy landscape.

Main digital policies and regulations in the country:

• Joint Government Digital Strategy 2026–2029: Seizing Digital Opportunities Together
• Agreement on an Ambitious and Responsible Strategy for Denmark’s Digital Development
• Denmark’s Digitalisation Strategy: Responsibility for Digital Development
• National Strategy for Digitalisation: Together in the Digital Development

Follow Denmark’s digital submarine cables

Cyprus is an EU front-runner on mobile coverage: it became the first EU country with 100% 5G population coverage in 2022, a milestone the European Commission highlights in its Digital Decade best-practice pages. Fixed connectivity has long been near-universal, and the government’s National Broadband Plan 2021–2025 keeps pushing very-high-capacity networks nationwide.

On digital government, the Digital Citizen mobile app issues legally valid digital documents for use inside the Republic (e.g. civil registry certificates), and services are integrated via gov.cy. In comparative terms, Cyprus sits in the upper tier globally on the UN’s 2024 e-government index (EGDI rank 38/193), reflecting steady service expansion from earlier years.

The market side is smaller in absolute terms but growing briskly: analyst estimates put 2025 e-commerce GMV at about US$1.07 billion with double-digit growth expected through 2030. Together with 5G ubiquity and continued gigabit build-out, these indicators place Cyprus among the Mediterranean leaders on mobile coverage and a regional fast-mover on digitising public services.

Consult Cyprus’s digital strategies and regulations

Follow Cyprus’s digital submarine cables

Digital Snapshot – Key Policies and Laws

Estonia’s digital policy framework is structured around the Estonian Digital Agenda 2030, which explicitly groups priorities into digital state, connectivity, and cybersecurity. In international benchmarking, the UN E-Government Survey 2024 ranks Estonia 2nd globally, reflecting high scores across online services, telecom infrastructure, and human capital.

On AI governance, Estonia’s main national reference point is the Data and Artificial Intelligence White Paper 2024–2030, which frames AI development alongside data governance and public-sector modernisation. The AI legal framework aligns with EU-level requirements, notably GDPR and the EU AI Act, while Estonia’s practical approach emphasises public-sector use cases and capacity development through short-cycle implementation planning.

For cybersecurity, Estonia’s current national framework is the Cybersecurity Strategy 2024–2030, which targets resilience of digital services in a deteriorating security environment and rapid technological change. In parallel, data protection is governed by the GDPR and the Estonian Personal Data Protection Act, and supervised by the Data Protection Inspectorate. Estonia also operationalises transparency through tools like RIA’s Data Tracker, which lets people see how their personal data is used across public systems.

What is a ‘data embassy’?

Estonia’s Data Embassy is essentially an ‘off-site backup’ for the digital state. Instead of keeping all critical copies of government data and systems only inside Estonia, the country arranged to store and run selected systems in a high-security data centre abroad, so key public services can be restored quickly if a major incident, such as a cyberattack, natural disaster, or large-scale outage, disrupts infrastructure at home. The best-known setup is with Luxembourg, based on a bilateral agreement signed in June 2017 and later ratified by Estonia’s parliament, which provides the legal and practical rules for this cross-border continuity arrangement.in 2018. The agreement defines ‘premises’ as dedicated data-centre space for hosting Estonian systems, and frames the setup as a legal and operational basis for cross-border continuity rather than routine outsourcing. In policy terms, the Data Embassy is notable because it treats digital public infrastructure as critical state capacity, raising practical questions about governance: (what is hosted, who can access it, how it is audited, and how it complements cybersecurity and cloud strategy), while also illustrating how small states can pursue resilience through trusted international partnerships.

Delivery of digital public services is built on interoperable infrastructure and a legally robust e-ID. The X-tee data exchange layer, run by Estonia’s State Information System Authority, RIA, is the core mechanism for secure data sharing across institutions. Estonia’s digital ID ecosystem supports digital signatures that are legally equivalent to handwritten signatures, which underpins remote transactions for both residents and e-residents. Estonia has also used internet voting with binding results since 2005, making elections a long-running test case for secure digital public services.

Consult Estonia’s AI and digital strategies and regulations

Ask the Diplo chatbot everything you want about digital strategies and regulations in the country ⬇️

On connectivity, cloud, and digital infrastructure, Estonia’s Broadband Plan 2030 is the implementation plan for nationwide high-speed networks. It includes measures to address market failure areas and to ensure continuous 5G coverage along key corridors. Public-sector cloud delivery is anchored by Riigipilv (Government Cloud) and the State IT Centre (RIT), which states it manages the government’s private cloud and brokers public cloud services from major international providers. Resilience concerns also extend to international links, as illustrated by repeated incidents involving the Finland–Estonia undersea cable and subsequent repairs/investigations.

In the digital economy and e-commerce, consumer behaviour data points to substantial uptake: Estonia’s central bank reported that online stores accounted for 24% of everyday purchases in 2024, above the euro-area average in the same survey. This demand-side trend aligns with Estonia’s broader ‘digital state + connectivity’ policy approach, where identity, payments, and service access are treated as mutually reinforcing parts of the digital ecosystem.

Estonia’s permanent mission to the UN:

Estonia’s Permanent Mission to the UN Office and other international organisations in Geneva represents Estonia in Geneva-based multilateral diplomacy, including work related to human rights and the Human Rights Council, humanitarian affairs, disarmament, and international economic organisations (e.g. WTO-related issues). The Mission is headed by Ambassador Riia Salsa-Audiffren, who presented credentials as Permanent Representative in August 2023, and it coordinates Estonia’s positions and statements across relevant UN and international bodies in Geneva.

Official UN website: https://www.ungeneva.org/en/blue-book/missions/member-states/estonia

Twitter/X: https://x.com/EstoniaGeneva

Facebook page

Related news on dig.watch

• Young Europeans lead surge in generative AI adoption
• Estonia invests in Germany to strengthen European tech independence
• Estonia leads the charge in defence tech investment
• Estonia introduces AI Leap programme for education
• EU sanctions three Russians over 2020 cyberattacks on Estonia
• Estonia’s Ministry of Justice proposes reforms for transparent and accessible e-voting
• Legal barriers and low interest delay Estonia’s AI rollout in schools

Follow Estonia’s digital submarine cables

Austria ranks near the regional frontier on several practical digital enablers. It operates a dense interconnection hub in Vienna via the VIX internet exchange, which anchors low-latency peering for ISPs, CDNs and clouds across Central Europe. National policy targets symmetrical gigabit networks by 2030 under the Broadband Austria 2030 strategy, and regulators continued to expand 5G capacity with a 2024 auction of 3.6 GHz and 26 GHz spectrum.

On cloud and data infrastructure, Austria is among a small set of the EU countries with an in-country hyperscale cloud region: Microsoft Azure ‘Austria East’ launched in August 2025 with three availability zones around Vienna, complementing Vienna’s long-standing colocation campuses. That strengthens options for low-latency workloads and data-residency needs.

Public-sector digitisation is also comparatively advanced. The EU’s Digital Decade country assessment notes Austria’s progress on connectivity and enterprise cloud uptake, while ID Austria provides single-sign-on to hundreds of services and surpassed 4.1 million users in 2025, a high penetration for a country of ~9 million. Together, these indicators, interconnection density, an in-country hyperscale region, and high digital-ID adoption, place Austria among the stronger performers in its region, even as it continues to push gigabit coverage deeper into rural areas.

Consult Austria’s AI and digital strategies and regulations

Follow Austria’s digital infrastructure