Google Cloud Among Four Firms Named UK Critical Third Parties Under New Telecom Rules
The UK telecom regulator has designated Google Cloud as a Critical Third Party alongside Amazon Web Services, Microsoft Azure and Oracle Cloud under its new digital infrastructure rules. Google must now meet binding resilience, security and reporting obligations and faces fines up to 10% of global turnover for breaches.
1. UK Telecom Regulator Designation
The UK telecom regulator has formally classified Google Cloud as a Critical Third Party under its updated digital infrastructure framework, grouping it with Amazon Web Services, Microsoft Azure and Oracle Cloud. This reflects the regulator’s assessment of these platforms as vital to national communications networks and core digital services. The designation extends statutory oversight over their cloud operations to safeguard service continuity.
2. Compliance Requirements and Potential Impact
As a Critical Third Party, Google Cloud is now subject to enforceable obligations on infrastructure resilience, security protocols and incident reporting. Regulators can conduct audits, mandate change controls and impose sanctions, including fines of up to 10% of global turnover for non-compliance. The elevated oversight may increase compliance costs and influence cloud service agreements with enterprise customers.





