SWF Data Center Investments: Navigating Regulatory & National Security Risks

by Marcus Liu - Business Editor
0 comments

Sovereign Wealth Funds and the Data Center Boom: Navigating Regulatory Hurdles

Data centers have become a prime infrastructure asset class globally, attracting significant interest from sovereign investors. Fueled by the rapid expansion of cloud computing, artificial intelligence (AI), and digital services, demand for both hyperscale and colocation facilities continues to exceed supply in many key markets. The capital-intensive nature of data center development, combined with long-term contracted revenues, makes the sector particularly appealing to sovereign wealth funds (SWFs), who increasingly view digital infrastructure as a core component of their global investment strategies.

However, data centers are no longer simply considered commercial real estate. Governments are increasingly classifying them as critical infrastructure due to their role in hosting sensitive data, supporting essential services, and enabling national digital economies. Investments by foreign state-affiliated entities – particularly SWFs – are facing heightened regulatory scrutiny across numerous jurisdictions.

This article examines the key legal and regulatory issues surrounding SWF investments in data centers, focusing on foreign investment review, national security considerations, data protection risks, and transaction structuring strategies.

SWFs as Infrastructure Investors

SWFs collectively manage trillions of dollars in assets and have become increasingly active direct investors in infrastructure. Historically focused on public equities and passive strategies, many SWFs now pursue long-term, control-oriented investments in sectors aligned with national economic objectives, including energy transition, transportation, and digital infrastructure. This trend is particularly pronounced among SWFs seeking to diversify their economies and enhance their geopolitical positioning.

Key drivers of data center investments include:

  • Data localization and sovereignty frameworks: These frameworks encourage providers to deploy capacity locally.
  • AI adoption: The growth of AI is driving demand for high-density compute environments.
  • Government support: Investor-friendly policies, including free-zone incentives and streamlined licensing, are reducing barriers to entry.
  • Power demands: The ability to meet the power demands associated with hyperscale data centers and semiconductor manufacturing is a critical factor.

SWFs are not homogenous. Some operate with significant independence from their home governments, pursuing purely commercial objectives, while others maintain closer ties to state policy. This distinction can significantly impact regulatory outcomes, particularly in jurisdictions assessing foreign investment risk based on both investor governance and the strategic importance of the target asset. SWFs are increasingly investing through joint ventures, platform acquisitions, and minority stakes with governance rights, structures that may trigger foreign investment review regimes designed to assess both control and influence.

Legal Characterization of Data Centers

A fundamental legal issue in many jurisdictions is how data centers are categorized for regulatory purposes. Depending on the applicable framework, they may be treated as:

  • Real estate assets
  • Telecommunications or digital infrastructure
  • Critical infrastructure supporting national security or public services

This characterization has significant legal consequences. Real estate transactions may face limited review, while investments in critical infrastructure or data-intensive businesses may trigger mandatory filings, extended review timelines, and mitigation obligations.

Resource consumption, particularly power and water usage, is also a major regulatory consideration for data center projects, increasing reporting obligations. For example, the EU Energy Efficiency Directive requires data centers with power demand exceeding 500 kW to report detailed energy performance data. IBM notes this increased scrutiny. California’s Senate Bill 57 (SB 57), directs the California Public Utilities Commission (CPUC) to study and mitigate the impacts of data center electricity demand on utility ratepayers, signaling a broader trend toward increased oversight.

Foreign Investment Review and National Security Controls

The United States

In the United States, the Committee on Foreign Investment in the United States (CFIUS) reviews foreign investments that could pose national security risks. CFIUS has broad jurisdiction over transactions involving critical infrastructure, businesses that collect sensitive personal data of US persons, and certain real estate transactions near sensitive government or military sites.

Data centers may fall under CFIUS’s purview, especially if they host sensitive personal data or support government or defense customers. SWF investments can attract heightened scrutiny, particularly if the fund is owned or controlled by a foreign government. However, the US administration’s America First Investment Policy, aimed at creating a fast-track process for allied nations, may expedite approvals for sovereign investments in data center projects. Economic partnerships with GCC nations, including Saudi Arabia and Qatar, have been established.

While minority investments may not trigger “control” under traditional analysis, CFIUS also evaluates non-controlling investments that confer governance rights, board representation, or access to non-public information. Certain transactions involving foreign government-linked investors may also trigger mandatory filing obligations.

Europe and the United Kingdom

Foreign direct investment (FDI) screening regimes have expanded significantly across Europe. The EU FDI Screening Regulation establishes a coordination framework, while individual member states maintain their own national regimes. Many European jurisdictions explicitly identify data infrastructure, cloud services, or digital connectivity as sensitive sectors.

In the United Kingdom, the National Security and Investment Act establishes a mandatory notification regime for acquisitions in designated sensitive sectors, including data infrastructure. Transactions involving foreign state investors, regardless of stake size, are likely to attract scrutiny, and the UK government has broad powers to impose conditions or block transactions.

Other Key Jurisdictions

Other jurisdictions with active review regimes relevant to data center investments include Australia (Foreign Investment Review Board), Canada (Investment Canada Act), and Singapore. Regulators often apply enhanced scrutiny to investments by foreign state-owned or state-influenced entities in sectors involving data, communications, or essential services.

India, where 20% of the world’s data is hosted and sector investment is projected to reach $100 billion by 2027, allows up to 100% FDI under the automatic route for data centers. In February 2026, India unveiled a 20-year tax break for companies using data centers built in the country, alongside infrastructure status and eased land-use rules in several states.

Data Protection and Cybersecurity

SWF investments in data centers raise complex data protection and cybersecurity issues beyond foreign investment approval. Regulators and counterparties may be concerned that foreign state ownership could facilitate access to sensitive data or create vulnerabilities in critical systems. The EU’s General Data Protection Regulation (GDPR) imposes strict obligations regarding data access, processing, and cross-border transfers. Even without an operational role, perceived risks associated with foreign government influence can trigger regulatory or commercial concerns.

Because the US lacks a comprehensive data privacy statute, investments in US data center projects require navigating a complex web of federal, state, and industry-specific rules.

Transaction Structuring and Risk Mitigation

Regulatory compliance – particularly around data protection, cross-border transfer limitations, and foreign ownership rules – can pose structuring challenges. Investors must balance rapid deployment timelines with robust partner selection, from engineering, procurement, and construction contractors to long-term operators. Successful investors form early strategic alliances and localize their delivery model.

Common approaches used by SWFs and their partners include:

  • Minority investments with limited governance rights
  • Joint ventures with clear allocation of operational control
  • Platform investments with jurisdiction-specific subsidiaries

Proactive diligence and careful structuring, especially in cross-border or sensitive sector investments, can avoid costly surprises and preserve exit optionality.

Outlook

As demand for digital infrastructure continues to grow, SWFs are likely to remain significant sources of capital for the data center sector. However, regulatory scrutiny of foreign investment in data-related assets is unlikely to diminish. Navigating these issues requires a coordinated, multi-jurisdictional legal strategy that balances capital access with regulatory compliance and long-term operational certainty.

Related Posts

Leave a Comment