S 1775119th CongressIn Committee

Protecting AI and Cloud Competition in Defense Act of 2025

Introduced: May 15, 2025

Defense & National SecurityInfrastructureTechnology & Innovation

Standard Summary

Comprehensive overview in 1-2 paragraphs

The Protecting AI and Cloud Competition in Defense Act of 2025 aims to change how the Department of Defense (DoD) purchases cloud computing, data infrastructure, and foundation AI models. The bill would require competitive procurement processes for these technologies, ensure DoD maintains exclusive rights to government data, and promote openness and interoperability through modular open systems and multi-cloud approaches. It also tightens protections around how government data can be used to train or improve the commercial products of providers with significant DoD contracts, and it requires regular public reporting to Congress about competition, innovation, and market concentration in the AI space. If enacted, the bill would affect cloud, data infrastructure, and foundation model providers that have DoD contracts totaling at least $50 million in a five-year window (the “covered providers”). It would drive DoD toward more competition, greater data rights protection, and broader use of multi-cloud architectures, while creating compliance obligations and potential penalties for misuse of government data. The bill also creates a recurring reporting requirement to track market dynamics and exemptions granted for national security reasons.

Key Points

1Competitive procurement and open-standards emphasis
2- Requires a competitive award process for each procurement of cloud, data infrastructure, or foundation models, and promotes modular open systems, interoperability, auditability, and appropriate allocation of work boundaries to prevent vendor lock-in.
3Data rights and use protections
4- Requires government-furnished data used for DoD AI products to remain under DoD control and not be used to train or improve the commercial products of covered providers without express authorization. Applies protections to data stored on vendor systems and aligns with DoD data governance principles. Establishes penalties for violations and provides for exemptions in limited cases.
5Multi-cloud and entry barriers
6- Prioritizes multi-cloud technology to avoid dependence on a single vendor, unless infeasible or dangerous to national security. Includes measures to mitigate barriers to entry for small and nontraditional contractors.
7Exemptions for national security
8- Component acquisition executives can grant exemptions when necessary for national security, with required notification to the Chief Digital and Artificial Intelligence Officer detailing the provisions exempted, the vendor, program, and justification.
9Reporting and transparency
10- Requires annual (for five years) reports to Congress assessing competition, innovation, entry barriers, and market concentration in the AI space, including a list of exemptions granted and their purposes. DoD must publish a publicly releasable version of each report.

Impact Areas

Primary group/area affected- DoD procurement and acquisition officials, especially those handling cloud, data infrastructure, and AI foundation model contracts; covered providers (large cloud, data infrastructure, and foundation model vendors with substantial DoD business); and contractors involved in defense AI projects.Secondary group/area affected- Small businesses and nontraditional contractors seeking DoD work (due to emphasis on reducing entry barriers); foundation model and data infrastructure providers; and DoD data governance and cyber/privacy teams implementing DFARS updates.Additional impacts- Potential changes to contract terms, data rights regimes, and compliance costs for covered providers; increased emphasis on multi-cloud architectures and modular open systems; greater public reporting on AI market health and competition; possible national-security exemptions that require close coordination with DoD leadership (CDIO) and program offices.Covered provider: a cloud, data infrastructure, or foundation model provider with DoD contracts totaling at least $50 million in any of the last five fiscal years.Foundation model: a very large AI model (generally 1 billion+ parameters or capable of broad tasks; or high risk to security/economy/public health) used across contexts.Multi-cloud technology: systems and services that enable portability, interoperability, and management across multiple cloud providers and environments.

Generated by gpt-5-nano on Oct 7, 2025