SecNumCloud

AI and data on a foundation built for European sovereignty

SecNumCloud is ANSSI's benchmark for trusted, sovereign cloud in France. Scrydon's European-native architecture, key control and audit are designed to run on qualified, sovereign infrastructure — your data, your jurisdiction, your control.

Book a DemoCommon Questions
What it is

SecNumCloud

SecNumCloud is the security qualification for cloud service providers defined by ANSSI, the French national cybersecurity agency. It sets demanding requirements covering security, data protection and operational governance, and — crucially — addresses sovereignty: qualified providers must offer protection against extraterritorial laws and keep data and operations under European control. SecNumCloud is a cornerstone of France's and Europe's push for a trusted, sovereign cloud, and is frequently required for sensitive public-sector and regulated workloads.

At a glance
Jurisdiction
France (ANSSI)
Applies to
Cloud service providers seeking French ANSSI qualification, and the public-sector and sensitive-data organisations that require qualified, sovereign cloud services.
Talk to us
How we help

How Scrydon helps you comply

Controls are built into the runtime, so compliance is something you can demonstrate with evidence drawn from the platform itself — not assembled after the fact.

European-native, sovereign architecture

Scrydon is a European-native platform designed to run on sovereign and self-hosted infrastructure, including SecNumCloud-qualified environments. This keeps your AI and data workloads under European control and aligned with the sovereignty objectives at the heart of the qualification.

Data residency and immunity to extraterritorial law

Because you choose where the platform runs and can deploy on-premises or with a qualified sovereign provider, data and operations stay within your chosen European jurisdiction — supporting the protection from extraterritorial reach that SecNumCloud is built to provide.

Key control with BYOK and HYOK

LOCAL, BYOK and HYOK key strategies let you keep cryptographic keys in your own custody, so even the platform operator cannot access your data. This reinforces the confidentiality and sovereignty posture that qualified, trusted cloud demands.

Strong security controls and audit

An mTLS service mesh, fail-closed defaults, policy-as-code authorisation, three-tier access control and an immutable, queryable audit log provide the layered security and traceability that ANSSI's framework expects of a trusted cloud service.

Framework evidence packs

Evidence packs map platform controls to SecNumCloud alongside ISO 27001 and other frameworks, giving you and your qualified hosting partner a documented basis to demonstrate how Scrydon fits within a SecNumCloud-aligned service.

Key requirements

What SecNumCloud asks of you

  • Operate to ANSSI's SecNumCloud security and governance requirements.
  • Keep data and operations under European control, immune to extraterritorial law.
  • Apply strong access control, encryption and key-management measures.
  • Maintain comprehensive logging, monitoring and incident management.
  • Ensure data localisation and residency within the qualified jurisdiction.
  • Govern personnel, subcontractors and the supply chain to qualification standards.
  • Demonstrate continuity, resilience and reversibility of the service.
FAQ

Frequently asked questions

Is Scrydon SecNumCloud qualified?+
SecNumCloud qualification is granted by ANSSI to a specific cloud service offering, typically the hosting and operations layer, not to an application platform in isolation. Scrydon is designed to run on SecNumCloud-qualified, sovereign infrastructure and contributes strong, well-documented controls to such a service. We support and align with SecNumCloud objectives and provide evidence; the qualification itself attaches to the qualified service and provider you deploy with.
How does Scrydon support French and European digital sovereignty?+
Scrydon is European-native and built for sovereign deployment: you choose where it runs, can host it on-premises or with a qualified sovereign provider, and can hold your own encryption keys with BYOK or HYOK. This keeps your data, models and operations under European — and where required French — control, which is the central aim of SecNumCloud and the wider sovereign-cloud agenda.
How does the platform address immunity to extraterritorial law?+
By keeping data and processing within your chosen European jurisdiction and putting key custody in your hands, Scrydon helps ensure that neither an external operator nor a foreign legal regime can compel access to your data. Deployed on SecNumCloud-qualified or on-premises infrastructure, this supports the protection from extraterritorial laws that the qualification requires.
Can Scrydon run fully on-premises or in a sovereign French cloud?+
Yes. Scrydon supports on-premises and sovereign-provider deployment, including SecNumCloud-qualified environments, and can run air-gapped for the most sensitive workloads. This lets public-sector and regulated organisations adopt advanced AI and analytics without compromising on data localisation or sovereignty.
What controls does Scrydon contribute to a SecNumCloud-aligned service?+
Scrydon brings an mTLS service mesh, fail-closed defaults, policy-as-code authorisation, three-tier access control, BYOK/HYOK key management and an immutable, queryable audit log, with framework evidence packs mapping these to SecNumCloud and ISO 27001. Together with a qualified hosting partner, these controls help demonstrate a trusted, sovereign cloud service.

Related

Sovereign InfrastructureOn-Premises DeploymentDigital SovereigntyAll compliance frameworks
Back to all compliance frameworks