Munich makes digital sovereignty measurable with its own score

The city of Munich has developed its own measurement instrument to assess the digital sovereignty of its IT infrastructure. The so-called Digital Sovereignty Score (SDS) visually resembles the Nutri-Score and identifies IT systems based on their independence from individual providers and "foreign" legal spheres. The Technical University of Munich was involved in the development.

In September and October 2025, the IT Department already conducted a first comprehensive test. Out of a total of 2780 municipal application services, 194 particularly critical ones were selected and evaluated based on five categories. The analysis already showed a high degree of digital sovereignty: 66 percent of the 194 evaluated services reached the highest levels (SDS 1 and 2), only 5 percent reached the critical level 4, and 21 percent reached the most critical level 5. The SDS evaluates not only technical dependencies but also legal and organizational risks.

"With our score, digital sovereignty becomes measurable for the first time, because we can only improve what we can measure," explained Dr. Laura Dornheim, Head of IT and Chief Digital Officer of the City of Munich. Measurability is the key to securing and systematically increasing the independence and operational capability of public administration. The services previously rated at level 5 include legally mandated services for e-procurement, application services of large public-law institutions in Bavaria and Hamburg, and software for the electronic health record.

Definition and Evaluation Criteria

The IT Department defines digital sovereignty as the ability of individuals and institutions to exercise their role in the digital world independently, self-determinedly, and securely. The developed score is based on a questionnaire that examines IT services for various risk factors. Among other things, vendor lock-in effects, dependencies on foreign jurisdictions, and the availability of open standards are evaluated.

The evaluation is carried out in five categories, the exact composition of which the IT Department has documented in the resolution proposal. Particularly critical factors lead to a zero, while the fulfillment of standard criteria positively influences the evaluation. Weaknesses could thus be transparently identified for targeted countermeasures.

Integration into Municipal IT Processes

Following the city council's decision, the SDS will now be incorporated into all IT processes and procurement procedures. In the future, stricter requirements for open standards will be set for tenders. The IT Department also plans to develop migration scenarios to avoid lock-in situations. The methodology will be further developed in cooperation with TUM. The IT Department will report annually on progress in digital sovereignty to the city council in the E-Government and Open Government Report.

Munich's initiative fits into a broader European trend. While the German Bundestag is working on concepts to reduce dependence on US tech giants and France is introducing its own video conferencing solution with Visio, Munich is taking a systematic approach: first measure, then improve specifically. The score is to be extended to other IT areas in the future.

(fo)