Aller au contenu
NNextHop
Cloud audit

Diagnostic, migration plan, regulatory alignment.

Our team of experts supports you from the initial audit to the effective migration to a sovereign cloud.

Methodology

Our five-step process

01

Scoping

1 week

A 90-minute workshop to map your IT estate, sensitive data and regulatory constraints.

02

Exposure audit

2-3 weeks

Analysis of your dependency on extra-European providers: CLOUD Act, FISA 702, non-EU transfers.

03

Migration scenarios

2 weeks

Three costed scenarios (5-year TCO), ranked by effort against sovereignty level achieved.

04

Transition plan

1 week

Detailed roadmap, workload forecast, risk identification, steering arrangements.

05

Final delivery

1 week

Final report, ExCom presentation and implementation support (optional).

Deliverables

What you receive

All packages include a written report delivered as PDF plus raw sources (CSV, calculation files). Below is the typical table of contents of a full audit report, followed by two stylised excerpts illustrating the format.

Typical report table of contents

1.

Context

Initial scoping, evaluated perimeter, identified regulatory and business constraints, working assumptions.

2.

IT estate mapping

Inventory of production workloads, classification by sensitivity, mapping of current providers and regions.

3.

CLOUD Act and extraterritorial laws analysis

CLOUD Act, FISA 702 and third-country sanctions exposure. Per-workload rating using the public NextHop framework.

4.

Costed scenarios

Three transition scenarios, 5-year TCO, estimated migration effort, sovereignty level achieved per scenario.

5.

Transition plan

Detailed 12-36 month roadmap, project governance, execution risk identification, measurable milestones.

6.

Annexes

Raw analysis sources, document references, glossary, scoring methodology, TCO calculation files.

Page 12
Stylised excerpt

Mapping CLOUD Act dependency of SaaS workloads

47 SaaS workloads identified, 31 directly under US jurisdiction.
12 workloads with GDPR personal data, non-EU transfers documented.
4 critical workloads with no sovereign alternative evaluated at this stage.
Recommendation: 3 priority migration tracks within 18 months.
Page 28
Stylised excerpt

Scenario B: partial migration to European sovereign cloud

Perimeter: 14 workloads out of 47, including the 4 critical ones.
5-year TCO: estimated 8 per cent uplift vs hyperscaler baseline.
Migration effort: 320 person-days spread over 18 months.
Sovereignty level reached: average score moves from 42 to 71.

Request a sample report

An anonymised sample (40-60 pages) is sent within 48 hours to identified contacts. Real samples are never published; they are delivered after signing a mutual confidentiality agreement.

Request an anonymised sample

No real sample is published publicly. Anonymised versions contain neither client name, nor business workload name, nor recognisable organisational structure.

Packages

Three engagement levels

Diagnostic

12,000 EUR

fixed package

CLOUD Act exposure audit
Sovereignty score of your IT estate
Risk mapping
20-page summary report
Choose this package

Full audit

38,000 EUR

package, 6-8 weeks

Everything in the Diagnostic package
Three costed scenarios
5-year TCO per scenario
Detailed transition plan
ExCom presentation
Choose this package

Engagement

On quotation

from 90,000 EUR

Everything in the Full audit
Migration steering
Change management
12 months post-migration support
Choose this package