Key Takeaways
- The UK’s heavy reliance on a few foreign technology giants creates chronic risks to national security, the economy, and democracy.
- Economic extraction through vendor lock‑in costs the UK at least £500 million annually in cloud services alone.
- Foreign‑controlled code exposes UK data to possible service withdrawal, sanctions, or cyber‑attacks under laws such as the US CLOUD Act and China’s National Intelligence Laws.
- Big Tech’s lobbying and algorithmic influence distort public debate and shape policy in ways that bypass British oversight.
- Shifting to a Digital Commons—open‑source software, open standards, and open hardware—offers a proven path to digital sovereignty.
- Research shows every £1 invested in open source yields roughly £4 in economic value; open‑source code already underpins 70 % of proprietary systems.
- The report recommends a “Public Code for Public Money” rule, stronger regulator powers, in‑house civil‑service technical capacity, and alignment with European sovereign‑tech strategies.
Overview of the Report and Its Urgency
Released on 14 April 2026 by the Open Rights Group, with forewords from cross‑party MPs Clive Lewis and Siân Berry, Tech Giants and Giant Slayers declares that the United Kingdom is experiencing a “crisis of digital dependency.” The document argues that dependence on a narrow cadre of foreign proprietary technology—mostly from the United States and China—constitutes an urgent threat to national security, economic stability, and democratic integrity. By framing the problem as a strategic national‑security issue, the report calls for a decisive pivot toward digital sovereignty through the adoption of open‑source solutions and the cultivation of a domestic Digital Commons.
The Crisis of Digital Dependency in the UK
Today, the UK’s most critical infrastructure—government databases, cloud‑computing platforms, communications networks, and public‑service applications—relies heavily on foreign‑owned proprietary software. This concentration creates systemic vulnerability because a handful of “strategic suppliers” control essential layers of the digital stack. The report warns that such concentration is not merely an inefficiency; it is a liability that can be exploited economically, security‑wise, legally, and politically.
Economic Extraction and Vendor Lock‑in
One of the four chronic risks identified is economic extraction. The Competition and Markets Authority (CMA) estimates that UK taxpayers are overcharged by at least £500 million each year in the cloud market alone due to vendor lock‑in. Dominant foreign firms can set prices and contract terms with little competitive pressure, draining public funds that could otherwise be reinvested domestically. The lock‑in also hinders innovation, as switching costs deter public‑sector experimentation with alternative, potentially more cost‑effective solutions.
Security Vulnerabilities from Foreign Code
Dependency on externally sourced code opens the UK to service withdrawals, sanctions, or even coordinated cyber‑attacks. If a foreign government decides to restrict access to its technology—or if a supply‑chain compromise occurs—essential UK services could be disrupted without recourse. The report highlights that reliance on opaque, proprietary binaries makes it difficult for UK security agencies to audit, patch, or verify the integrity of the software underpinning national infrastructure.
Surveillance Risks and Legal Conflicts
Legal regimes such as the United States’ CLOUD Act and China’s National Intelligence Laws permit foreign governments to compel tech companies to hand over data stored on their platforms, irrespective of where the data physically resides. This creates a direct conflict with UK data‑protection laws and exposes citizen and government information to extraterritorial surveillance. The report warns that such legal reach undermines British sovereignty and erodes public trust in digital services.
Democratic Distortion by Tech Giants
Beyond economics and security, the report identifies a democratic dimension. Large technology firms wield substantial lobbying power, shaping UK policy in ways that favour their commercial interests. Simultaneously, their algorithms curate the information citizens see, influencing political discourse and effectively “shaping public debate itself.” This dual influence can marginalize alternative viewpoints, reduce accountability, and tilt the democratic playing field toward corporate agendas.
The Digital Commons as the Antidote
The report’s central prescription is a strategic shift toward the Digital Commons—a shared ecosystem built on open‑source software, open standards, and open hardware. Contrary to the perception that open source is merely a hobbyist pursuit, the document presents robust evidence that it underpins the majority of modern proprietary systems and delivers measurable economic returns. By embracing openness, the UK can reduce dependence on foreign vendors, increase transparency, and foster home‑grown innovation.
Economic Evidence Supporting Open Source
Citing EU research, the report notes that every £1 invested in open source yields roughly £4 in economic value. Furthermore, open‑source code constitutes about 70 % of the codebase in 95 % of all proprietary systems, indicating that the UK already benefits indirectly from open collaboration. National economies that lack robust open‑source adoption are estimated to be 2–3 % smaller than they could be, underscoring the macro‑economic upside of a sovereign open‑tech strategy.
The Public Code for Public Money Principle
A cornerstone of the proposed shift is the “Public Code for Public Money” rule: if taxpayers fund the development of software, the resulting code must be openly licensed for anyone to use, improve, and redistribute. This principle prevents the privatization of publicly funded assets, ensures that improvements benefit the broader public sector, and creates a virtuous cycle of reuse and cost savings across government departments.
Strategic Roadmap Toward Digital Sovereignty
To operationalize the vision, the report outlines several concrete recommendations for the UK Government:
- Reset Digital Policy – Elevate digital sovereignty to a core national‑security objective, moving beyond passive procurement to active shaping of the tech landscape.
- Follow the European Lead – Adopt policies akin to those of Germany, France, and the Netherlands, which are already investing in sovereign open‑technology alternatives and public‑code mandates.
- Build In‑House Expertise – Re‑strengthen technical leadership within the Civil Service, reducing reliance on costly external consultants and ensuring that government retains the capability to evaluate, adapt, and maintain open‑source solutions.
- Empower Regulators – Grant the Competition and Markets Authority and other oversight bodies stronger enforcement powers to mandate interoperability, prevent anti‑competitive practices, and enable smaller UK‑based “Giant Slayers” to compete fairly with incumbent giants.
Rebuilding In‑House Technical Expertise
The report stresses that sustainable sovereignty cannot be achieved through outsourcing alone. By revitalizing internal digital teams, the UK can develop a deep understanding of the technologies it depends on, customize open‑source tools to specific public‑service needs, and respond swiftly to emerging threats. This internal capacity also reduces long‑term procurement costs and enhances accountability.
Empowering Regulators to Foster Competition
Strengthening regulator authority is presented as essential for leveling the playing field. Interoperability requirements would compel dominant vendors to open their interfaces, allowing innovative UK firms to offer compatible services without being locked out. Enhanced enforcement could also deter exploitative licensing practices and ensure that public procurement prioritizes value, security, and strategic autonomy over short‑term convenience.
Learning from European Sovereign Initiatives
Germany’s Sovereign Cloud initiative, France’s Open Source Public Policy, and the Netherlands’ Digital Government Strategy serve as practical models. These countries have combined public‑code mandates, targeted funding for open‑source projects, and proactive procurement reforms to reduce reliance on foreign giants. The report urges the UK to adapt these lessons to its own institutional context, tailoring them to address the specific risks outlined.
Conclusion: A Call to Action for the UK Government
Tech Giants and Giant Slayers frames the UK’s digital dependency as a solvable yet pressing challenge. By embracing the Digital Commons—through open‑source adoption, public‑code policies, reinforced regulatory oversight, and rebuilt domestic expertise—the nation can mitigate economic extraction, bolster security, safeguard democratic discourse, and unlock billions of pounds in economic growth. The report’s message is clear: the time to act is now, lest the UK remain vulnerable to the whims of foreign tech powers while forfeiting the strategic and financial benefits of true digital sovereignty.