Use

The ‘Use’ phase focuses on the success of data centre operations from the end user perspective and the services they need. It requires a strategic approach balancing commercials, business needs, security and regulatory compliance.

Typical objectives

Optimise procurement & ensure compliance

Optimise procurement strategies to comply with applicable public‑sector procurement regulations and reporting requirements.

Align leases & co‑location

Ensure leases and co‑location agreements meet end‑user power capacity and connectivity requirements.

Security & cyber standards

Protect critical and sensitive data; meet cybersecurity standards for regulated environments, including governmental national security schemes.

Deliver seamless & reliable service

Provide consistent uptime, fast processing, dependable performance and stable latency for cloud service end users.

Service level agreements

Prioritise clear, enforceable SLAs covering availability, performance, support, incident response, remedies and reporting obligations.

Disposal & exit

Maximise value and minimise execution risk by preparing early checklists covering customer, contract, IP, data and SLA readiness.

“End users of cloud services will require a seamless, reliable service, with consistent uptime and fast data processing to meet ever growing business demands.”

Łukasz Węgrzyn

Partner, Head of IT and Data, Osborne Clarke Poland

A photo of a data centre interior providing fast connection.

Key legal considerations

Our key legal considerations guide procurement and service governance to ensure reliable, compliant outcomes.

Icon representing service and lease contracts for data centres.

Service Contracts

Review and negotiate lease agreements, co-location agreements, IaaS/PaaS/SaaS agreements and service level agreements.

Icon representing cybersecurity and data management compliance.

IT and Data Management

Adhere to data protection laws and ensure data centre providers guarantee robust cybersecurity measures.

Icon representing regulatory and legal compliance for data centres.

Regulatory Compliance

Ensure compliance with applicable public procurement rules, sustainability requirements, telecoms regulations, and AI and data protection laws.

Equipment Lifecycle

Plan refresh and upgrade cycles. Include support obligations, change control, and compliant decommissioning and disposal.

Key regulations

The regulations outlined shape data protection, cybersecurity and resilience, and cloud portability and exit obligations, informing contractual and operational controls, and must be addressed during the ‘Use’ phase.

Last updated 31 October 2025

These may be subject to change.

European Union

GDPR (EU) 2016/679

Processor terms, SCCs/transfers, DPIAs, 72‑hour notification

e‑Privacy rules

Consent and metadata for electronic communications

NIS2 Directive (EU) 2022/2555

Risk management, supply‑chain security, incident reporting

DORA (EU) 2022/2554

Financial sector ICT risk, testing, third‑party oversight, incident reporting

EU Data Act (EU) 2023/2854

Cloud switching, egress fees, interoperability, exit assistance

Data Governance Act (EU) 2022/868

Data intermediation services, where relevant

National level

National data protection laws

e.g. UK: Data Protection Act 2018; UK GDPR; Data (Use and Access) Act 2025

Telecoms and electronic communications rules

e.g. UK: Communications Act 2003; Ofcom’s General Conditions of Entitlement; PECR 2003

National NIS/cyber resilience regulations

e.g. UK: Network and Information Systems Regulations 2018

National data use/access regimes

e.g. UK: Data (Use and Access) Act 2025

How we can help

We support the ‘Use’ phase by ensuring secure, compliant service delivery and long-term operational optimisation:

Service delivery contract negotiation

IT and data management

Regulatory compliance for procurement

Strategic sourcing and planning

AI integration and governance

Sustainability and ESG integration

Vendor risk assessment and oversight

Long-term performance optimisation

Contact our experts

our Experience

A leading provider of carrier neutral data centres

A leading provider of carrier neutral data centres on data retention, data protection and security issues.

PREVIOUS PHASE

Operate

The ‘Operate’ phase maintains performance through capacity management, maintenance, security, resilience, audits and ongoing compliance.

Ready to get started?

Our international data centre specialists are available across key jurisdictions. Contact any member of our team to discuss your project.

Our experts

Our team of specialists can guide you through every aspect of the ‘Use’ phase.

Łukasz Węgrzyn

Partner, Head of IT and Data

Osborne Clarke Poland

+48 795 576 136

Email Łukasz

Full bio

Matthew Sharkey

Associate Director

Osborne Clarke UK

+44 207 105 7582

Email Matthew

Full bio

Eleanor Williams

Partner

Osborne Clarke UK

+44 117 917 3630

Email Eleanor

Full bio

Xavier Pican

Partner, IP/ IT

Osborne Clarke France

+33 1 84 82 45 88

Email Xavier

Full bio

Mario Gras

Counsel

Osborne Clarke Spain

+34 91 576 44 76

Email Mario

Full bio

Rupa Lakha

Partner

Osborne Clarke UK

+44 207 105 7841

Email Rupa

Full bio

Szymon Ciach

Counsel

Osborne Clarke Poland

+48 534 834 259

Email Szymon

Full bio

Helen Waddell

Partner

Osborne Clarke UK

+44 207 105 7449

Email Helen

Full bio

Piotr Kaniewski

Counsel

Osborne Clarke Poland

+ 48 500 201 139

Email Piotr

Full bio

Typical objectives

Optimise procurement & ensure compliance

Align leases & co‑location

Security & cyber standards

Deliver seamless & reliable service

Service level agreements

Disposal & exit

Key legal considerations

Service Contracts

IT and Data Management

Regulatory Compliance

Equipment Lifecycle

Key regulations

European Union

National level

How we can help

Operate

Ready to get started?

Our experts

Join our data centre mailing list