
How Microsoft Exposed Dutch Regulators to the US Government — and What It Means for EU Data Sovereignty
June 4, 2026
In the Netherlands, it emerged that Microsoft handed personal data of EU civil servants to the US House of Representatives — including names, emails, meeting minutes, and invitations. Not because of a cyberattack. Not because of a GDPR violation. Because of a US law called the CLOUD Act — and because Microsoft, like every American tech company, has no choice but to comply with it.