The Sri Lankan government is in discussions with multiple local and international stakeholders to conceptualize a sovereign cloud that meets global security standards, senior officials revealed. The initiative aims to engage qualified players through a structured participation mechanism to ensure a secure and sovereign data environment.
With the country advancing its national digital ID project, concerns over the sovereignty and security of sensitive data have been repeatedly emphasized.
“We need a sovereign cloud that complies with all local and international security standards. Discussions are ongoing to establish a mechanism for both local and foreign entities to contribute to this setup,” said Sanjaya Karunasena, Director of the Information Communication Technology Agency of Sri Lanka (ICTA), in an interview with Biometric Update on Wednesday.
He further stressed the importance of rigorous testing, security assurances, and service warranties to protect citizens’ personal data. Karunasena highlighted that a biometric-backed digital identity would provide a robust and reliable cybersecurity framework for Sri Lankans but must undergo multiple security checks before public deployment.
Dr. Hans Wijesuriya, Chief Adviser to the President on Digital Economy, reinforced that security and control frameworks must take precedence, with risk assessments tailored to different types of data.
“Data security must be approached in multiple layers, ensuring integration across sectors while safeguarding national interests. We must also explore cross-border business opportunities where business-to-business (B2B) interfaces can enhance trade and economic transactions in the region,” Wijesuriya stated at the Innovation Island Summit in Colombo.
The national data exchange, which will integrate with Sri Lanka’s sovereign cloud, was previously detailed in February as part of the country’s broader digital transformation strategy.
