Versa Launches Sovereign SASE-as-a-Service: Redefining Data Sovereignty in the Cloud Era
Versa, recognized globally as a leader in integrated security and networking solutions, today announced the general availability of Sovereign SASE-as-a-Service, a groundbreaking fully cloud-based Software-as-a-Service (SaaS) solution designed to provide true operational and legal data sovereignty. This innovation represents the world’s first SASE (Secure Access Service Edge) offering where data, control, and management layers are fully operated within a region’s legal jurisdiction, addressing one of the most critical challenges organizations face in today’s increasingly regulated digital environment.
In recent years, digital sovereignty has evolved beyond mere compliance requirements to become a key board-level concern. Governments across Europe and other regions are asserting more control over how data is handled, stored, and processed. Frameworks such as the General Data Protection Regulation (GDPR), NIS2, and DORA are not only tightening the rules around data privacy and security but also significantly increasing enforcement expectations. In this context, ensuring data sovereignty is no longer simply a checkbox on a compliance list—it has become a strategic imperative for enterprises that need to secure their data, applications, and communications while remaining fully aligned with local laws.
Despite growing attention on the topic, most existing SASE offerings do not satisfy the requirements of true sovereignty. Many providers operate local points of presence (POPs) within a country, but this alone does not guarantee full sovereignty. In many cases, user traffic is routed to security gateways outside the country for content inspection and threat mitigation, while operational control remains outside the local jurisdiction. This approach, often referred to as “hairpinning,” results in sensitive metadata being logged and processed abroad, creating a critical gap in legal and operational sovereignty. Even on-premises gateways do not fully close this gap if management, policy enforcement, or traffic auditing is controlled elsewhere.
Versa has long been a pioneer in developing Sovereign SASE architectures, delivering these capabilities in production environments across multiple regions. The company partners with service providers globally to help them build and operate sovereign SASE services tailored to the specific legal and operational requirements of their customers. One notable example is Swisscom’s “beem” service in Switzerland, which represents the first carrier-grade, nationally compliant Sovereign SASE deployment leveraging Versa’s architecture.
Many organizations have invested in sovereign cloud strategies but have found that secure access to their applications and data remains controlled outside their jurisdiction,” explained Kelly Ahuja, CEO of Versa. “Simply deploying a gateway device from a cloud SASE provider at the customer’s site does not make a solution sovereign. True sovereignty requires clarity about where access is secured, where policies are enforced, and who retains control over the data as it is transferred.”
The launch of Sovereign SASE-as-a-Service brings enterprise-level sovereignty within reach for organizations of all sizes. Previously, the deployment of a fully sovereign SASE infrastructure was reserved for organizations with significant resources, advanced technical expertise, and a dedicated team to design, implement, and manage such complex architectures. Versa’s SaaS offering now allows companies to leverage fully managed, legally compliant security and networking capabilities without the burden of building or operating the infrastructure themselves.
In the DACH region and Germany, Versa’s Sovereign SASE-as-a-Service delivers:
- Full architectural sovereignty: Data, control, management layers, and logging are all operated on EU-hosted and controlled infrastructures. This ensures independence from Versa’s global cloud while fully aligning with local legal frameworks.
- Legal jurisdiction within the EU: Contractual processing is handled by Versa Networks BV, a legal entity based in the Netherlands, enabling operations, localized data processing, and support services fully compliant with EU law.
- Cloud simplicity: Fully managed SaaS-style deployment allows organizations to access sovereign infrastructure without the need to hire or train personnel to operate it.
While sovereign cloud initiatives from major hyperscalers address the location of applications and data storage, they do not typically cover the complete path of data inspection, routing, logging, and protection during transmission. Versa’s Sovereign SASE fills this gap, providing full enforcement of zero-trust policies, traffic auditing, and operational control entirely within sovereign boundaries, ensuring legal compliance is matched by operational security.
Industry analysts recognize the significance of this offering. Jim Frey, Principal Analyst for Enterprise Networking at Omdia, noted: “The provision of Sovereign SASE as a managed service represents a structural shift in the market. Previously, sovereign architectures were largely reserved for national operators or organizations with the necessary resources to build and operate their own infrastructure. A managed model lowers the barriers for regulated companies that need to adapt to their respective jurisdictions without having to bear the operational burden themselves.”
Similarly, Dario Maisto, Senior Analyst at Forrester Research, emphasized that digital sovereignty has moved from a niche compliance issue to a central theme in risk management. His research underscores that organizations across Europe are increasingly cautious about their dependence on hyperscalers in critical areas such as infrastructure, AI, and data services.
Customers and partners also highlight the practical benefits of Sovereign SASE-as-a-Service. Boris Wetzel, Managing Director and founder of Germany-based IT security managed services provider Choin, explained: “Many of our enterprise customers are looking for the SASE functionality they trust, but delivered in a way that meets the stringent EU sovereignty and GDPR requirements. Versa’s Sovereign SASE-as-a-Service approach allows us to meet these requirements without changing the underlying platform or operating model – exactly what the market demands.”
By providing fully sovereign operations, Versa empowers organizations to confidently meet regulatory requirements while benefiting from cloud simplicity, operational efficiency, and robust cybersecurity measures. The company’s approach ensures that sensitive data remains within legal jurisdictions while maintaining the flexibility and scalability of cloud-delivered SASE.
Versa continues to lead in integrated security and networking innovation, helping organizations build self-protecting networks that simplify and automate network and security infrastructure. The VersaONE Universal SASE platform, powered by AI, delivers converged Secure Service Edge (SSE), SD-WAN, and SD-LAN solutions to protect data, secure applications, and enhance the digital experience. Trusted by thousands of enterprises worldwide, Versa’s technology secures millions of users and countless endpoints, all while enabling organizations to maintain operational sovereignty and compliance.
For more details on Versa’s Sovereign SASE-as-a-Service, the company’s blog post “Introducing Sovereign SASE as a Service” and its product page at https://versa-networks.com/products/sovereign-sase/ provide further information.
About Versa
Versa is a global leader in integrated security and networking solutions, providing organizations with the tools to build self-protecting, AI-driven networks that simplify and automate both network and security management. Supported by investors such as Sequoia Capital, Mayfield, and BlackRock, Versa serves thousands of organizations worldwide, protecting critical data, applications, and users.
