Asia has a three-year window to seize AI leadership through digital sovereignty: Opinion

From Singapore to India, Asian countries are investing heavily in artificial intelligence infrastructure, data ecosystems and digital platforms as they look to seize the next phase of digital economic growth and AI leadership.

The 2026 IBM CEO Study reveals that 69 per cent of leaders say AI is already changing core business aspects and, by 2030, their agendas will be entirely focused on speed, intelligence and reinvention.

This implies that Asia’s window to be a leader in the AI transformation is narrow – likely three to five years – and the economic stakes for getting the foundation right are high.

Yet, just as AI adoption accelerates, a tension is emerging. For a region that has long relied on digital openness and cross-border trade to fuel innovation, governments across the region are establishing stricter data localisation requirements and tighter rules governing cross-border data flows.

Gartner predicts by 2028, 65 per cent of governments worldwide will introduce some technological sovereignty requirements to improve independence and protect from extraterritorial regulatory interference, underscoring how quickly governance, control and trust are becoming embedded into the architecture of enterprise AI systems.

This dynamic has created a fundamental challenge: policymakers are encouraging faster adoption of AI and digital technologies to drive productivity and economic growth, but the expanding patchwork of national data rules is erecting new digital borders that complicate how these technologies operate across markets.

The result is a growing constraint on realising the full economic potential of AI investment, elevating what was once a technical issue into a strategic, national and CEO-level challenge.

For Asia to stay competitive in the age of AI, the region must rethink digital borders and build trust directly into the architecture of AI systems.

“Architectural trust” as digital sovereignty

Throughout much of the past decade, digital sovereignty has largely been interpreted through the lens of data residency – the idea that data should remain physically within national borders. In the early days of cloud computing, this offered regulators a straightforward way to maintain oversight.

That approach is beginning to show its limits.

Today’s AI systems are not static repositories of data. They depend on globally developed, open-source frameworks and require constant, secure access to distributed information streams.

When strict localisation rules are imposed on these systems, organisations often find themselves duplicating infrastructure, isolating data environments or restricting the use of global technology platforms to remain compliant.

That said, the urgency of building resilient digital systems cannot be discounted. Asia-Pacific already accounts for roughly 27 per cent of cyberattack cases observed globally, underscoring the growing strategic value and vulnerability of the region’s digital infrastructure.

This shift calls for a different way of thinking about digital sovereignty – what might be described as “architectural trust”. This framework moves the focus away from geography and towards system design. Instead of relying solely on where data sits, it emphasises who controls the infrastructure, where AI systems operate, and whether those controls can be independently verified.

In practice, this means building governance directly into the architecture of digital systems. Sovereignty becomes something that can be demonstrated technically through access controls, encryption management and transparent audit trails, rather than relying solely on regulatory commitments or contractual assurances.

Trust, in other words, becomes engineered.

For Asia, striking the right balance will be critical. If AI development becomes constrained by fragmented digital rules, the region risks weakening one of its most important competitive advantages – its cross-border openness. 

At the same time, governments are right to strengthen safeguards around cybersecurity, data governance and digital resilience as AI introduces new risks around data misuse, intellectual property exposure and accountability.

The challenge, therefore, is not whether sovereignty should exist, but how it should be implemented.

Evolving AI infrastructure

Encouragingly, parts of Asia are already moving towards this model. Singapore’s Model AI Governance Framework serves as a vital regional blueprint in this regard.

Crucially, its interoperability with the US National Institute of Standards and Technology (NIST) AI Risk Management Framework ensures that businesses in Asia can maintain robust, locally compliant governance while seamlessly connecting to global innovation ecosystems.

Architectures that combine strong local governance with open technological ecosystems offer one possible path forward. Hybrid digital environments – where sensitive workloads remain under national jurisdiction while less sensitive applications continue to access global innovation platforms – are emerging as a practical compromise.

This is particularly true for regulated industries, which require a high degree of specificity in how they meet compliance. One of India’s leading telecommunications service providers, Bharti Airtel, has deployed a hybrid cloud architecture that allows it to embrace new AI-powered technologies while ensuring the firm can maintain control and adhere to strict local regulatory mandates.

Similarly, Indonesia’s largest telecommunications provider, Telkom Indonesia, has used hybrid cloud architecture built on open-source principles to develop a sovereign cloud platform and AI. The platform empowers millions of small and medium-sized enterprises across the archipelago to access modern digital tools while ensuring national economic data remains under sovereign control.

The economic stakes are rising quickly. Analysts show that the market for sovereign cloud infrastructure alone is projected to grow more than four times by 2028, as governments and enterprises search for ways to resolve this dilemma.

The next three to five years may prove decisive for Asia’s role in the global AI economy. Continuing down the road of fragmented, residency-based policies risks creating a future of digital protectionism, inefficiency and missed opportunity for the region.

But by building digital systems grounded in architectural trust, the region can transform a complex regulatory challenge into a strategic advantage – one that strengthens both innovation and confidence in the technologies shaping the AI era.

The writer is general manager, IBM Asia-Pacific

Source: The Business Times © SPH Media Limited. Permission required for reproduction.

Sole objective of removing PayNow nicknames is to address impersonation scams: Forum S’pore, UK ink agreement to cooperate on nuclear safety regulation, training