EU Data Act: A Burden or Boost for Data Centres?

On 12 September 2025, the EU Data Act came into effect, reshaping how data is accessed, shared and transferred across Europe.

For the data centre sector, the regulation introduces both obligations and possibilities.

While some operators may view it as another layer of compliance, industry experts suggest it could create opportunities for trust, resilience and long-term growth.

Keith McAleese, Senior Partner at BIP UK, believes the legislation should be seen as a turning point rather than a loss of control.

“This is a moment for [companies] to pivot from seeing data regulation as restrictive to recognising it as a catalyst for customer connection,” he explains.

Transparency as a competitive advantage

The EU Data Act grants customers the right to access, share and transfer their data across service providers.

In practice, this prevents lock-in and ensures competition within the digital economy.

For data centres, this transparency may appear to reduce traditional advantages.

Yet Keith argues that openness can become a strength.

“Transparency is no longer just a legal requirement, it’s a brand differentiator,” he notes.

He adds that providers who make consent and portability seamless, while demonstrating investment in resilient infrastructure, signal trust to customers.

In a sector where clients look for security and stability, that trust can underpin retention.

In a blog post written by Jeanette Manfra, Senior Director of Global Risk and Compliance at Google Cloud, Google has outlined its Data Transfer Essentials service.

"Built in response to the principles of cloud interoperability and choice outlined in the EU Data Act, Data Transfer Essentials is a new, simple solution for data transfers between Google Cloud and other cloud service providers. Although the Act allows cloud providers to pass through costs to customers, Data Transfer Essentials is available today at no cost to customers," Jeanette says.

The legislation reframes data as a value exchange rather than a resource to harvest.

Clients expect their information to be safeguarded with the same reliability as the facilities that house their workloads.

In return, they may be more willing to share data when it results in personalised services, improved loyalty schemes or performance enhancements.

Interoperability and ecosystem growth

A central component of the Act is interoperability.

By mandating open application programming interfaces (APIs), the regulation enables collaboration across platforms and providers.

For data centres, this could translate into deeper partnerships with technology vendors, cloud providers and software developers.

The result may be bundled services or integrated solutions that extend value beyond colocation or infrastructure.

Such interoperability allows data centres to strengthen their position in the digital value chain.

By aligning with partners while maintaining compliance, they can expand their role from infrastructure providers to trusted ecosystem participants.

Security and compliance as essentials

With greater sharing and interoperability comes heightened risk. Increased data flows inevitably attract attention from cybercriminals, and data centres sit at the heart of this ecosystem.

“Customers expect that their data will be protected just as robustly as the networks they rely on every day,” Keith observes.

“Yes, telcos can evolve from connectivity providers into more data-driven ecosystem players, but they can only do so if those ecosystems are built on security, resilience and compliance.”

For data centres, like telcos, resilience and compliance are non-negotiable.

Any failure could weaken trust and undermine the loyalty that the regulation has the potential to build.

Operators must therefore ensure that enhanced transparency is matched by rigorous protection of the assets they host.

Rethinking the role of providers

At its core, the EU Data Act asks operators to reconsider their place in the market. Data centres have traditionally been viewed as utilities, but the legislation pushes them towards becoming trusted partners.

Commenting on the regulations in relation to the telecommunications sector, Keith presents the regulation as an “invitation” for companies to “rethink their role”.

“Rather than being seen as utilities, operators have the chance to become trusted partners by curating services, tailoring offers and demonstrating that in using data in ways that deliver real benefits, without compromising security or compliance,” he explains.

For data centres, this means showing that regulatory compliance goes hand in hand with tangible client benefits, whether through service personalisation, stronger uptime commitments or enhanced sustainability.

Compliance as a catalyst

The message for the industry is clear: treating the EU Data Act purely as a compliance exercise risks missing the opportunity it represents.

By embracing transparency, reinforcing resilience and creating seamless customer experiences, data centres can thrive in an environment of growing competition.

Trust is emerging as the most valuable currency and those who act early to align regulation with value creation will be better placed for growth.

The EU Data Act may be viewed as a burden by some, but for data centres willing to adapt, it offers a path to stronger relationships, reduced churn and sustainable expansion.