Skip to main content
STACKIT logo

STACKIT

Verified

“A genuinely sovereign EU cloud β€” German-owned hardware, German law, no US parent.”

Operating HQ
πŸ‡©πŸ‡ͺ Bad Friedrichshall / Neckarsulm
where it's run
Legal domicile
πŸ‡©πŸ‡ͺ Germany
where it's incorporated
Founded
2018
Parent
Schwarz Group
Regions
DE + AT
Listing
Private
94/100
Sovereign: Yes
Control ↑
96
Data β†’
92

94 = midpoint of Control 96 & Data 92

ConfidenceHigh (88%)

Sovereignty Quadrant

Control ↑ who owns & governs the company  Β·  Data β†’ where your data lives. Every dot is a company β€” click to open it.

Where your data lives β†’ Who controls the company β†’ 7 companies Β· fully non-EU (0/0) TikTok β€” Data 32, Control 24 Google β€” Data 16, Control 14 Youtube β€” Data 14, Control 16 Ionos β€” Data 90, Control 90 Disneyplus β€” Data 16, Control 12 Telegram β€” Data 34, Control 14 Carrefour β€” Data 100, Control 32 Corriere β€” Data 100, Control 100 Microsoft β€” Data 26, Control 14 Amazon β€” Data 14, Control 10 Amazon β€” Data 66, Control 0 Reddit β€” Data 14, Control 10 Netflix β€” Data 24, Control 20 LinkedIn β€” Data 14, Control 16 Reuters β€” Data 26, Control 0 Pinterest β€” Data 12, Control 12 Discord β€” Data 16, Control 20 AliExpress β€” Data 18, Control 12 Twitch β€” Data 18, Control 16 Samsung β€” Data 62, Control 4 Canva β€” Data 24, Control 20 Spotify β€” Data 30, Control 68 Apple β€” Data 16, Control 16 GitHub β€” Data 16, Control 10 Uber β€” Data 16, Control 16 Salesforce β€” Data 20, Control 14 Deepl β€” Data 70, Control 78 Airbnb β€” Data 18, Control 18 Shopify β€” Data 18, Control 18 Mastercard β€” Data 36, Control 16 Dropbox β€” Data 14, Control 10 HubSpot β€” Data 24, Control 10 Notion β€” Data 22, Control 16 Stripe β€” Data 30, Control 30 Zalando β€” Data 52, Control 88 Figma β€” Data 18, Control 10 SAP SE β€” Data 68, Control 78 Atlassian β€” Data 18, Control 18 Proton β€” Data 72, Control 54 Miro β€” Data 100, Control 44 Klarna β€” Data 44, Control 42 Ecosia β€” Data 60, Control 92 Zoom β€” Data 20, Control 14 Adyen β€” Data 84, Control 84 GitLab β€” Data 26, Control 14 Slack β€” Data 14, Control 20 Hetzner β€” Data 84, Control 96 Deezer β€” Data 62, Control 66 Typeform β€” Data 100, Control 52 OVHcloud β€” Data 82, Control 94 Tutanota β€” Data 100, Control 100 BlaBlaCar β€” Data 54, Control 76 Qwant β€” Data 56, Control 88 Bitwarden β€” Data 28, Control 20 Contentful β€” Data 34, Control 48 Personio β€” Data 34, Control 58 Ikea β€” Data 34, Control 100 Whatsapp β€” Data 14, Control 12 Instagram β€” Data 28, Control 22 X β€” Data 14, Control 16 Avast β€” Data 60, Control 0 Paypal β€” Data 24, Control 32 Kaspersky β€” Data 56, Control 0 Dailymotion β€” Data 100, Control 74 Snapchat β€” Data 12, Control 14 Scaleway β€” Data 80, Control 92 92 96 STACKIT
STACKIT β€” verified peers β€” automated estimate (0–50 pillars, normalized)

Every number below traces to 13 sourced facts across 10 independent sources, last verified 2026-06-12. 3 open questions hold confidence at 88% β€” they lower confidence, never the score.

Control ↑

Who legally and economically controls the company

96/100
6 facts Β· 5 sources Β· mixed confidence
Legal & Jurisdiction
95

Incorporated in Germany as a GmbH & Co. KG, operating HQ in Baden-Wuerttemberg, fully reachable by German and EU law (GDPR, BSI C5). No foreign parent diluting enforceability β€” the controlling chain stays inside Germany.

Why 95? 3 sourced facts · click to expand
Schwarz Digits Cloud GmbH & Co. KG (formerly STACKIT GmbH & Co. KG), Amtsgericht Stuttgart HRA 741347

Legal entity and German commercial-register entry

STACKIT Imprint (Impressum) Β· as of 2026-06-12

Am Campus 1, 74177 Bad Friedrichshall, Germany

Registered office in Germany

STACKIT Imprint Β· as of 2026-06-12

Companies, data centers and servers located in Germany and Austria, subject to European and German law

Operating entity subject to German/EU law and GDPR

STACKIT Data Sovereignty page Β· as of 2026-06-12

Control & Ownership
97

100% controlled by the Schwarz Group, ultimately owned by the German Dieter Schwarz Foundation. Privately held β€” no stock-market listing, no foreign capital, no dual-class US listing. Both voting control and economic majority sit in Germany.

Why 97? 3 sourced facts · click to expand
STACKIT is the cloud of Schwarz Digits, the IT/digital division of the Schwarz Group

Parent is the Schwarz Group (Lidl/Kaufland owner) via Schwarz Digits

Schwarz Digits product portfolio Β· as of 2026-06-12

Schwarz Group ultimately owned by the Dieter Schwarz Foundation (gGmbH); Lidl/Kaufland not listed on any stock exchange

Ultimate ownership sits with a German foundation, no listing

Wikipedia: Dieter Schwarz Foundation / Schwarz Group Β· as of 2026-06-12

STACKIT Holding GmbH & Co. KG, Neckarsulm, Amtsgericht Stuttgart HRA 741349 (founded 27 May 2024)

Holding structure incorporated in Germany

Online-Handelsregister Β· as of 2026-06-12

Data β†’

Where your data lives and who can reach it

92/100
7 facts Β· 7 sources Β· mixed confidence
Data & Infrastructure
92

Runs its own OpenStack data centers exclusively in Germany and Austria β€” not EU regions rented on a US hyperscaler. Explicitly markets resistance to US CLOUD Act access. Small deduction because hardware, chips, and some software in any cloud remain globally sourced, and full independent ownership of every facility is asserted by the company rather than independently audited here.

Why 92? 4 sourced facts · click to expand
eu01 (Germany), eu02 (Austria); each region has at least three physically separate AZs

All regions hosted only in Germany and Austria with 3+ availability zones each

STACKIT Docs β€” Regions Β· as of 2026-06-12

Own data centers incl. DC01 Neckarsulm (DE), DC08 Ellhofen (DE), DC10 Ostermiething (AT); describes itself as a sovereign European hyperscaler

Operates its own data centers, positions as a European hyperscaler

Data Center Map β€” STACKIT Β· as of 2026-06-12

Customers safe from data access by unauthorized third parties, e.g. US authorities under the CLOUD Act; data collected, stored and processed in the EU

Explicit CLOUD Act / foreign-access resistance claim

STACKIT Data Sovereignty page Β· as of 2026-06-12

In the Google partnership, STACKIT provides local EU data storage and client-side encryption keeping Google out

STACKIT hosts data for others (incl. Google Workspace) in its own EU DCs

Schwarz Digits / Google press release Β· as of 2026-06-12

Operations & People
92

Headquartered and run in Germany (Baden-Wuerttemberg), German leadership team, euro reporting via Schwarz Digits, workforce centered in Germany/Austria. Operations are unambiguously EU-centered.

Why 92? 3 sourced facts · click to expand
Represented by STACKIT Beteiligungs-GmbH (Neckarsulm, HRB 795936); MDs Christian Mueller, Robin Hermann, Bernd Wagner

Managing directors are based at the German operating company

STACKIT Imprint Β· as of 2026-06-12

Schwarz Digits ~7,500 employees; division revenue ~EUR 1.9bn (FY2024/25)

Parent division scale and euro reporting

Wikipedia: Schwarz Digits Β· as of 2026-06-12

Started 2018 within Schwarz IT to run group data sovereignly; opened to external market in 2022

Founded and built inside the Schwarz Group in Germany

Schwarz Group press release Β· as of 2026-06-12

Aligned to the EU Commission’s official Cloud Sovereignty Framework (SEAL, Jun 2026) β†’

What we don’t know 3 open questions β€” they lower confidence, never the score
  • ?

    Does STACKIT own (vs. lease/colocate) every data center, and is the OpenStack stack fully self-operated end to end?

    If parts are colocated or rely on third-party operators, the physical-sovereignty claim is slightly weaker than fully owned metal.

  • ?

    STACKIT's standalone headcount and revenue are only loosely reported (third-party estimates ~500-1,000 staff, ~USD 50m revenue).

    Hard to gauge operational scale and independence versus the parent's consolidated Schwarz Digits figures.

  • ?

    Hardware, silicon, and some upstream software remain globally (often US/Asia) sourced.

    Supply-chain layer is not EU-sovereign even though hosting, ownership, and law are β€” a residual dependency common to all clouds.

EU Cloud Sovereignty Framework lens

SEAL (Sovereign European Assessment Layer) is an analogous mapping for cloud providers, not a formal certification; categories below are our reading of public sources.

Strategic

Backed by the privately-held Schwarz Group with long-term, no-external-shareholder horizon; explicitly built for EU digital sovereignty.

strong

Legal & jurisdictional

German incorporation and HQ, fully under German/EU law and GDPR; no foreign parent diluting enforceability.

strong

Data & AI

Data stored/processed only in DE/AT; client-side encryption offered (e.g. Google Workspace), explicit CLOUD Act resistance.

strong

Operational

Run and staffed from Germany/Austria, German leadership, euro reporting via Schwarz Digits.

strong

Supply chain

Data centers in EU, but servers, chips and some software are globally sourced β€” a residual non-EU dependency.

moderate

Technological

Own OpenStack-based platform, open-source foundation to limit lock-in, no underlying US hyperscaler.

strong

Security & compliance

ISO 27001 and BSI C5 Type 2 certified; serves KRITIS-grade Schwarz Group workloads.

strong

Environmental sustainability

Did not verify energy mix, PUE, or renewable commitments from primary sources in this pass.

not assessed
EU alternatives
πŸ‡«πŸ‡· OVHcloud ovhcloud.com EU-controlled

EU-listed (Euronext Paris), French-controlled hyperscaler with own EU data centers β€” the largest independent EU peer.

πŸ‡©πŸ‡ͺ IONOS ionos.com EU-controlled

German cloud/hosting provider (United Internet group), EU data centers; a direct German sovereign-cloud peer.

πŸ‡«πŸ‡· Scaleway scaleway.com with caveats

French cloud with EU data centers, but owned by privately-held Iliad group β€” solid EU option, smaller catalog.

How the method works

Methodology v2 (provisional): the score is the midpoint of two axes β€” Control (who owns and governs the company) and Data (where your data lives and who can reach it). Each axis is scored only on verified evidence; unknowns reduce confidence, never the score. Every input below is sourced; the weights and judgments are open to challenge.

Spotted an error? Every claim is sourced β€” challenge it and we correct the record.
  • 2026-06-12 β€” Initial golden profile, authored from primary sources (human + AI review).

Report Incorrect Data

Found an error in this company's profile? Help us improve our data by submitting a correction.

Required so we can follow up if needed. We won't share your email.

Verified 2026-06-12 Β· Human + AI joint review (sources independently checked) Β· Methodology