The German market for AI in the Public Sector is in a phase of transition. After the pilot phase, scaling and productive operations are now coming into focus – while at the same time, fundamental debates about digital sovereignty and GDPR-compliant infrastructures accompany every procurement decision. The administration faces the task of leveraging the technological potential of Large Language Models (LLM) and generative systems without losing control over data and processes.
Market Structure: Between Tech Giants and European Partners
At its core, two camps compete for public contracts: US hyperscalers with established cloud and AI platforms, and European IT service providers that rely on sovereign alternatives. Microsoft Public Sector and AWS Public Sector offer comprehensive AI services that can be integrated into existing cloud infrastructures – but often with data centers outside the EU and associated data protection concerns.
European providers such as Dataport AöR, AKDB, and T-Systems Public instead rely on regional data centers and sovereign cloud infrastructures. Materna and msg systems develop AI-based administration tools tailored directly to specialist procedures and OZG requirements. The advantage: closer integration into existing administrative architectures and better control over data flows.
Fields of Application: From Chatbots to Automated Case Processing
In practice, AI systems in administration are deployed mainly in three areas: first, automated citizen inquiries via intelligent chatbots and language models that answer FAQs and pre-qualify applications. Second, document processing, where AI-powered classification and information extraction from documents relieve case workers. Third, decision support, such as in evaluating applications or prioritizing processes.
Administrative automation remains regulated: the EU AI Act defines high-risk scenarios that must meet special transparency and audit requirements. Decisions with direct legal effect – such as notices regarding social benefits – may not be fully automated. Here, AI performs suggestion functions, with the final decision made by the case worker.
Regulation: EU AI Act and GDPR Determine Architecture
The EU AI Act has been in effect since August 2024 and is becoming mandatory in stages. High-risk applications in administration must provide documented risk analyses, test protocols, and human oversight by 2027 at the latest. This particularly affects systems that process biometric data or grant access to benefits. For many authorities, this means: additional investment in documentation, compliance processes, and potentially technical adjustments.
In parallel, GDPR requirements are tightening data processing standards. Many AI models require large amounts of training data, whose anonymization or pseudonymization is time-consuming. Public bodies must also demonstrate that data is processed only within the EU legal area – an aspect that requires additional contractual and technical measures for US cloud services.
Sovereignty Debate: Local Models versus Global Platforms
The sovereignty debate significantly shapes procurement decisions. Regional data centers and municipal IT service providers increasingly prefer open-source LLMs that can be hosted locally – such as models from the BLOOM, LLaMA ecosystem or German initiatives like OpenGPT-X. Advantage: complete control over data and model behavior, no dependence on external API providers.
The disadvantage is higher operational effort. Proprietary language models require specialized hardware, continuous training and fine-tuning, as well as IT personnel with AI expertise – resources that many smaller municipalities do not have. Hybrid approaches, where standard tasks run via sovereign AI platforms and complex analyses fall back on specialized services, are therefore becoming more common.
Outlook: Scaling Depends on Standardization
Further market development depends heavily on two factors: first, the creation of uniform interfaces and APIs that make it possible to integrate AI modules into existing specialist procedures. Interoperability between federal IT systems is a prerequisite for solutions to work across state borders. Second, clear governance frameworks must define who is liable for AI decisions and how transparency to citizens is ensured.
Initiatives such as OZG 2.0 and sovereign cloud projects create initial foundations. As long as federal AI standards are lacking, however, the market remains fragmented – with different solutions depending on the federal state and municipal IT strategy. For providers, this means: regional sales and close cooperation with the IT service providers of the states remains necessary; a nationwide rollout is not realistic in the short term.
