Digital & Data Sovereignty Assessment Tool
A structured, evidence-based framework to benchmark your organisation’s digital sovereignty posture across 14 domains, 5 pillars, and 84 assessment criteria.
5
Assessment Pillars
14
Sovereignty Domains
84
Assessment Questions
12
Executive KPIs
2
Languages
Measure.
Benchmark.
Strengthen.
DDSAT is TALISMAN Cybersecurity’s proprietary Digital & Data Sovereignty Assessment Tool — a rigorous methodology that enables governments, regulators, and critical infrastructure operators to establish a quantified baseline of their sovereignty posture.
Unlike generic IT audits, DDSAT applies a maturity-based scoring model across all dimensions of digital sovereignty: from data residency and encryption key control to AI governance and institutional oversight capacity.
The output is a Digital Sovereignty Index (DSI) — a single composite score (0–100) with full domain-level breakdowns, 12 executive KPIs, and a prioritised remediation roadmap.
Quantifiable Digital Sovereignty Index
Weighted composite score (0–100) with pillar breakdown and maturity classification, ready for board-level reporting.
Encryption & Key Sovereignty
Assess HSM deployment, key management policies, and cryptographic independence from foreign vendors.
AI Governance & Sovereignty
Evaluate AI risk governance, model transparency, national AI strategy alignment, and data sovereignty in AI pipelines.
Critical Infrastructure Protection
Audit CNI designation, incident response capability (CSIRT/SOC), and foreign investment review mechanisms.
12 Executive KPIs
Traffic-light KPI dashboard with strategic thresholds — ready for board-level reporting and regulatory submissions.
Five-Pillar Assessment Architecture
Each pillar is independently weighted and aggregated into the Digital Sovereignty Index (DSI). The weighting reflects each domain’s relative impact on a nation’s ability to exercise autonomous digital control.
How the Assessment Works
From scoping to your Digital Sovereignty Index in four structured phases. Most organisations complete the full assessment cycle within eight weeks.
Scope & Mobilise
Assemble your cross-functional team, define organisational scope, and brief stakeholders on the framework and evidence requirements.
Conduct Assessment
Complete the 84-question evaluation across all 14 domains. Gather documentary evidence and validate responses against available records.
Analyse & Report
Generate your DSI score, review all 12 executive KPIs, and receive a prioritised gap remediation roadmap ranked by impact and feasibility.
Remediate & Reassess
Implement the roadmap, track KPI improvements against baselines, and re-assess annually to measure progress and adapt to emerging threats.
The Digital Sovereignty Index
DDSAT produces a single composite DSI score (0–100) built from five weighted pillar scores. Every score maps to one of five maturity levels — from Initial to Optimizing.
The sample below reflects a typical mid-sized government directorate in their first sovereignty assessment — strong on Legal alignment, with clear improvement areas in AI Governance and Cloud Sovereignty.
Sample organisation
Directorate of
Digital Infrastructure
Everything you need to get started.
Two tools are live and available today. The French version and White Paper are in final preparation and will be released shortly.
DDSAT Assessment (English)
Complete the full 84-question assessment at your own pace. Receive your DSI score, pillar breakdown, 12 KPIs, and prioritised recommendations instantly.
DDSAT Interactive Demo
Explore the tool with a pre-loaded sample organisation. See how scores, KPIs, and recommendations are generated — no commitment required.
OESD — Outil d’Évaluation de la Souveraineté Numérique
Version complète en français, avec terminologie adaptée au secteur public francophone (OIV, AIPD, CCT, APD, PCA, DPD, ISN).
DDSAT Methodology White Paper
The complete technical and policy documentation: five-pillar architecture, scoring methodology, maturity model, 12 KPIs, and strategic outcomes framework.
DDSAT: A Methodology for Strengthening Government & Critical Infrastructure Digital Sovereignty
This white paper documents the full DDSAT conceptual framework — from the five-pillar assessment architecture and 14 assessment domains to the Digital Sovereignty Index scoring formula, five maturity levels, and 12 executive KPIs. It explains how the tool translates assessment results into three strategic outcomes: protecting citizen data, governing digital infrastructure, and ensuring continuity of service delivery.
Read the white paperBuilt for governments & critical infrastructure.
DDSAT is designed for organisations that carry a public mandate to protect citizens’ data and ensure continuity of national services. It is not a commercial IT audit — it is a sovereignty framework.
Central Government
Ministries, executive agencies, and central government bodies managing citizen data and national digital infrastructure.
CNI Operators
Energy, water, telecoms, transport, and financial sector operators designated as critical national infrastructure.
Regulators & DPAs
Data protection authorities and sector regulators assessing compliance, issuing guidance, or conducting audits.
Regional Governments
Subnational administrations and regional authorities with digital service delivery responsibilities.
Public Health & Safety
National health systems, emergency services, and public safety organisations handling sensitive citizen data.
Development Partners
International organisations and donors supporting digital governance reform and sovereignty capacity building.
Know where you stand.
Act on what matters.
Digital sovereignty is not a destination — it is a continuous practice. Start with a clear baseline, prioritise what protects citizens most, and build toward operational independence.