Question to the Department for Science, Innovation & Technology:

To ask the Secretary of State for Science, Innovation and Technology, whether she has held discussions with (a) Microsoft, (b) Amazon Web Services and (c) Palantir regarding the potential implications of the (1) US Cloud Act, (2) Patriot Act and (3) entity‑list controls for UK data sovereignty and access to cloud services.

The Secretary of State has not held specific discussions with these companies on these matters.

The Government takes a balanced approach to cloud services, ensuring public sector systems are secure, resilient, and effective, while benefiting from global innovation. This is underpinned by data protection law, UK security standards, and established commercial rules.

Supplier risks are managed through established security and resilience processes, with procurement decisions based on value for money, security, and the effective delivery of public services, including for critical infrastructure.