Executive Assessment

Digital Sovereignty Assessment

Sovereignty Through Control. Complete this structured executive self-assessment to receive an immediate maturity score, classification and recommended next steps.

All AssessmentsRequest NDA
Jurisdiction

1. Do you know which jurisdictions govern your critical workloads?

2. Have contractual jurisdictional obligations been formally reviewed?

3. Do executives understand the legal implications of cloud provider jurisdictions?

4. Do technology procurement processes include jurisdiction reviews?

5. Can you identify all critical providers operating outside South Africa?

Residency

6. Do you know where critical data is physically stored?

7. Do you classify information by sensitivity?

8. Do you maintain a data residency register?

9. Are residency requirements documented?

10. Are residency requirements regularly reviewed?

Access

11. Do you know who can access critical information?

12. Do you review privileged access regularly?

13. Do third-party providers have access to sensitive information?

14. Are access controls audited?

15. Do executives receive access governance reporting?

Control

16. Do you maintain a documented sovereignty governance framework?

17. Are sovereignty risks included in governance reviews?

18. Do executives understand strategic technology dependencies?

19. Do you evaluate sovereignty before adopting new platforms?

20. Do you maintain provider dependency assessments?

Recoverability

21. Can critical data be exported independently of providers?

22. Do you maintain documented exit strategies?

23. Have provider exit plans been tested?

24. Can critical workloads be migrated if required?

25. Do executives review recoverability as part of governance?