Fujitsu Limited and PwC Japan Group (hereinafter PwC Japan) announced a collaboration to enhance the reliability and accelerate market penetration of the Fujitsu Cloud Service powered by Oracle Alloy. This partnership will focus on supporting compliance with the System for Ensuring Stable Provision of Critical Infrastructure Services under Japan’s Economic Security Promotion Act.
Through this collaboration, Fujitsu and PwC Japan aim to develop a reference guide clarifying Fujitsu’s sovereign cloud service’s compliance status with the System for Ensuring Stable Provision of Critical Infrastructure Services. The guide, set to be published in December 2025, will provide a practical framework for specified critical infrastructure operators in Japan to formulate and implement mandatory risk management measures, thereby reducing the burden of compliance and promoting cloud adoption.
Based on Fujitsu’s sovereign cloud service, Fujitsu and PwC Japan will provide support for the design and documentation of cloud user-side risk management measures, tailored to the specific risk characteristics and operational requirements of each specified critical infrastructure operator. In addition, the two companies aim to expand their collaboration into areas such as supporting compliance with the security clearance system, assisting with CSPM/CNAPP application for apps on Fujitsu’s sovereign cloud service, and promoting the utilization of sovereign AI with data sovereignty and trustworthiness.
Kazushi Koga, Corporate Executive Officer, Fujitsu Limited, comments:
“The new guideline developed together with PwC Japan will clearly articulate the reliability of Fujitsu’s sovereign cloud service and its alignment with Japan’s Economic Security Promotion Act. By offering practical guidance for meeting regulatory requirements, we aim to substantially reduce the compliance burden for our customers. Through Fujitsu’s secure and dependable sovereign cloud service, we are committed to empowering our critical infrastructure partners to operate safely and sustainably.”
Taiji Ayabe, Senior Officer, Partner, PricewaterhouseCoopers Japan LLC, comments:
“We are excited to contribute PwC Japan’s expertise in cloud security, supply chain regulations, and digital governance to Fujitsu’s sovereign cloud service. This collaboration creates an environment where Japan’s critical infrastructure companies can efficiently navigate regulatory compliance, including the development and implementation of risk management measures, and utilize cloud services with greater confidence.”
Akihiro Machida, Officer, Partner, Technology Alliance Lead, PwC Consulting LLC, comments:
“This sovereign cloud service, built upon Oracle’s robust technology and enhanced by Fujitsu’s extensive customer service experience, is a vital offering in today’s geopolitical landscape. To effectively leverage the agility and advanced technologies like AI within systems handling critical data, ensuring digital sovereignty through sovereign cloud adoption is crucial. PwC Japan looks forward to collaborating with Fujitsu to support DX promotion and the co-creation of reliability in Japan.”
Overview of the reference guide
The reference guide will systematically organize the compliance status of Fujitsu’s sovereign cloud service with the System for Ensuring Stable Provision of Critical Infrastructure Services, covering all 27 requirements for constituent equipment and 14 requirements for outsourced critical maintenance and management services as stipulated by the risk management measures. Specifically, it will detail: 1) the shared responsibility model between cloud users and cloud providers, 2) measures taken to meet the requirements for sovereign cloud and verifiable evidence of management status, 3) guidelines for actions that users should implement, and 4) reference information for related services and functions.
The guide will visualize the reliability and suitability of Fujitsu’s sovereign cloud service for the Economic Security Promotion Act, leveraging Fujitsu’s pioneering framework and operational governance in Japan. Through this, both companies will present a practical framework that connects security acceptance testing, control information such as organizational structures and countermeasures, and the practical responses of users. This will significantly support specified critical infrastructure operators in simultaneously reducing the burden of compliance with the System for Ensuring Stable Provision of Critical Infrastructure Services and promoting cloud utilization.
For more information visit global.fujitsu
