29 June 2026
Service Sovereignty in an Age of Withheld Intelligence
The decision to withhold advanced AI models from general access isn't a sudden shift. It is the continuation of a tension that has been building for years across the technology landscape.

The decisions to withhold two frontier models from general consumer access have brought a long-simmering issue into sharper focus: service sovereignty. For many, this will feel like a sudden shift. It is not. It is the continuation of a tension that has been building for years across the technology landscape, one that anyone who has worked inside an enterprise IT function will recognise immediately.
Modern software consumption has trended relentlessly toward convenience. Cloud platforms, managed services, and API-driven ecosystems promised speed, scale, and reduced operational overhead. The pitch was compelling, and organisations bought into it fast, often faster than their thinking could keep up. The true costs of that decision, loss of control, vendor lock-in, price-hikes and exposure to the strategic choices of third parties, were deferred, underestimated, or simply brushed aside in the rush to modernise.
This is the enduring challenge of technology adoption: innovation and systems thinking are not natural allies. Moving quickly delivers competitive advantage; but the systems underpinning critical capabilities require deliberate design, clear ownership, and a clear-eyed view of failure modes. When those systems are externalised, so too is a portion of your agency.
In enterprise IT, this tension predates the cloud. It showed up in every outsourcing contract, every SaaS migration, every decision to trade operational control for someone else's SLA. The questions were always there: what happens when a critical service changes its terms, degrades its performance, or simply disappears? For a long time, those questions stayed theoretical. Increasingly, they are becoming operational realities, especially in a fast moving domain like genAI.
What is unique now is the expanding influence of geopolitical and state-level forces. Access to advanced technology is no longer governed by market dynamics alone. National strategies, export controls, and policy decisions are actively shaping who can use what, and under what conditions. The whims of states, once considered ideological allies, are now a material factor in business continuity planning, and very few organisations have modelled that risk or understand how to react.
This is where service sovereignty matters. At its core, it is the ability to maintain meaningful control over the tools and systems you depend on. It does not necessarily mean rejecting cloud services or external providers. It means understanding and mitigating the risks of dependency, knowing which capabilities are load-bearing, which can be replicated, and which represent single points of failure you cannot tolerate.
Self-hosting and self-provisioning with open source software are not new ideas. They predate the cloud by decades. What has changed is the urgency of treating them as deliberate strategic choices rather than a niche preference for those who distrust convenience. The tooling has matured. The models exist. The barrier is not technical, it is organisational will and the discipline to think in systems rather than just solutions.
The obvious objection is that most organisations are not in a position to run their own AI infrastructure. The compute requirements are significant, the expertise is scarce, and the operational overhead is not trivial. That objection is fair, but it is becoming less decisive by the month. Open-weights models are closing the gap with proprietary frontier systems faster than most anticipated. The capability threshold at which a self-hosted model becomes genuinely useful for enterprise workloads has already been crossed for a wide range of applications. The question is shifting from whether open-weights models are good enough to whether your organisation has the architectural foundations to take advantage of them when the time comes.
Sovereignty comes with real costs. Running your own infrastructure introduces complexity, demands expertise, and requires ongoing investment. None of that is insurmountable. With genuine systems thinking, deliberate architecture, and a willingness to sit with trade-offs rather than optimise them away, organisations can build hybrid approaches that preserve meaningful control without abandoning the benefits of external services.
The key is intentionality. Innovation without systems planning creates hidden fragility that only reveals itself at the worst moment. Every dependency is a decision about trust, resilience, and autonomy, whether you made it consciously or not.
The question is no longer whether to think about this. It is which capabilities are too critical to leave in someone else's hands, and whether you have the architecture and the will to do anything about it.
Which capability in your stack is too critical to leave in someone else's hands? I'd like to hear your view in the comments.
Get new notes in your inbox
I publish a few times a month on platform engineering, Azure infrastructure, and building platforms that don't rely on heroics. No spam, unsubscribe anytime.
Your email is sent to my self-hosted endpoint and stored via Resend. See the privacy policy.
Comments load automatically via GitHub (Utterances), which may set cookies. See the privacy policy.