"SUSE, in its nature, is a European company. We are registered in Europe, everything is in Europe." — Dirk-Peter van Leeuwen
EQT's $6 billion dance and the sovereignty contradiction
SUSE devoted large portions of its annual SUSECON event to pitching European digital sovereignty even as reports surfaced that its majority stakeholder is quietly exploring a potential sale valued at about $6 billion. The inquiry, reported in March, says Swedish private equity firm EQT — which spun SUSE out from US group Micro Focus in 2018 for $2.5 billion — commissioned Arma Partners to examine the Linux vendor's options. That process is described as still in early stages, but the possibility of a US buyer creates an immediate tension for SUSE's public message: a sale to American owners would, the coverage noted, complicate SUSE's European sovereignty credentials.
How SUSE is framing "European" at SUSECON
SUSE pressed its Europeanness throughout SUSECON. CEO Dirk-Peter van Leeuwen told The Register the company is registered and operates in Europe and that, even if acquired by an American shareholder, "we are still a European company with shareholders in America. But we are operating according to European laws." The company repeatedly emphasised its roots and jurisdiction as a counterpoint to rising concerns about digital independence.
That pitch is being delivered into a market where regulators and buyers are piling up new demands. SUSE's own CTO, Dr. Thomas Di Giacomo, summed the regulatory sprawl with a weary briefing-room quip: "I'd rather have less!"
Customer perspectives: US focus on keys and Europe on contracts
Andreas Prins, SUSE's Global Head of Sovereign Solutions and former CEO of StackState (which SUSE acquired in 2024), explained how different buyer communities frame sovereignty. "American customers ... focus on data security: who owns it, who has access, who controls the keys," he said. By contrast, Europeans are "preoccupied with the vendor relationship itself - the contract, the jurisdiction, the question of who can ultimately reach in." SUSE used a survey of 309 IT leaders across countries including the US and Japan to underline the point: 98 percent said they were prioritizing digital sovereignty and more than half were already taking action by developing or having a strategy in place.
Hyperscalers, local workloads and application triage
SUSE does not predict a mass departure from hyperscalers. Prins noted that 70 percent of respondents "across the globe believe that the hyperscaler is part of the solution." Instead, SUSE argues customers are beginning to carve workloads more strategically: the trend is to rank applications by business criticality and reassess where the most mission-critical workloads should operate. Prins warned that while the move toward local workloads is visible, it still represents "a small slice of what already runs in the cloud."
Hardware limits and certification as a sovereignty strategy
SUSE acknowledged a boundary to what software can deliver on sovereignty: hardware. "Hardware is slightly different," Prins said, noting a broader movement around chip designs and the limits of achieving full sovereignty purely in software. He argued software carries the greater sovereignty risk and described SUSE's approach as focussed on standards and certification: "What SUSE does is we try to certify on as much standards as possible." SUSE urged datacenter providers to adopt a diversity strategy — "dual-vendor" and variety in the rack — so no single technology becomes a single point of sovereignty exposure.
What this means for technologists, policymakers, and procurement leaders
- Technologists and security teams: expect continued emphasis on data control mechanisms (ownership, access, key control) and on certifying platforms to standards that map to local jurisdictional requirements.
- Policymakers and regulators: will be watching the ownership thread closely — the report noted that American corporations can be compelled under the US CLOUD Act to hand over customer data held on servers located anywhere in the world, a legal fact that complicates sovereignty promises if ownership crosses borders.
- Enterprise procurement leaders: will likely accelerate application-level assessments; SUSE signals customers are already ranking mission-critical workloads and taking concrete steps rather than pursuing a wholesale exodus from cloud providers.
SUSE's public posture at SUSECON is straightforward: a European-registered company selling sovereignty-focused solutions. The parallel track — a possible sale by EQT that could put ownership in different hands — exposes the tension between legal jurisdiction, perceived control, and the messy realities of global data law. The question left on the table is practical and specific: can SUSE preserve its Europeanness in customers' eyes if ownership moves across the Atlantic, even while it remains registered and operating under European law?
