BSI’s Mark of Trust framework aims to help operators prove reliability, regulatory alignment, and sustainability as data centres become national infrastructure assets.
Data centres are no longer viewed solely as technical facilities — they are now strategic national assets underpinning digital economies, sovereign data strategies, and long-term sustainability goals. With rising scrutiny around energy consumption, water use, carbon impact, regulatory compliance, and infrastructure resilience, operators face mounting pressure to prove not just performance, but trustworthiness.
BSI has introduced its Mark of Trust, a framework designed to help data centre organisations demonstrate reliability, security, and sustainability through a modular, internationally aligned approach. The initiative reflects a growing recognition that digital trust must extend beyond uptime and protection to include environmental responsibility, regulatory alignment, and community impact.
BSI, global business improvement and standards organisation working with over 77,500 clients across industries, helps organisations build resilience, manage risk, and address critical challenges. Recognised for more than a century for its positive societal impact, BSI collaborates with a global network of 15,000 experts, industry bodies, governments, and consumer groups. It serves as the UK’s National Standards Body and represents UK interests at international and European standards organisations including ISO, IEC, CEN, CENELEC, and ETSI.
David Mudd, Global Head of Digital Trust Assurance at BSI, spoke to Tahawultech.com about the trust gaps shaping today’s data centre landscape, the rationale behind the Mark of Trust model, and why harmonised digital trust standards will be critical as AI-driven infrastructure scales toward 2030.
Interview excerpts
What trust gaps in today’s data centre ecosystem prompted BSI to launch the Mark of Trust?
The new Mark of Trust was developed following an approach by industry for an international solution that focused on the availability and protection of data centres to ensure their reliability. We very quickly realised that it wasn’t just about reliability – there were additional and varying challenges around carbon, energy and water for organisations therefore we convened experts from around the globe to help to address these challenges across all sectors. It also became apparent that no two organisations had the same challenges, therefore a modular approach would be the most effective.
The key was to find a solution that could provide trust and confidence that the increasing global demand for data centres can be delivered sustainably and efficiently over the long term, while addressing key concerns around energy demand, regulatory compliance, supply chain vulnerability, water usage, and strain on existing infrastructure and local communities.
How does the Mark of Trust help Middle East data centre operators meet rising regulatory and sovereignty expectations?
The modules are based on harmonised international standards, which provide a framework for data center operators and encourage them to consider interested parties and their needs, including local / regional regulations. In order to achieve the Mark of Trust, organisations must demonstrate that they have considered the requirements of those interested parties. Data centres are a fundamental part of UAE digital initiatives, such as Digital Dubai, the Saudi Data and Artificial Intelligence Authority (SDAIA) and the National Digital Agenda 2030 (Qatar) – the Mark of Trust is designed to ensure that data center providers can satisfactorily address government and regulatory scrutiny and that sites can be readily demonstrated as compliant with emerging global regulations.
Why was a modular, organisation-wide certification chosen over traditional project-based standards?
We wanted the scheme to be flexible to ensure that it would address the challenges of all organisations, irrespective of their individual requirements. For example, an organisation may choose to focus on ‘availability and protection’ initially if this is a pre-requisite for them entering a specific market. Other organisations may focus on sustainability due to government requirements.
How does the Mark of Trust balance security, availability and sustainability as AI infrastructure scales?
The flexibility of the scheme enables organisations to prioritise the areas that they need to and when. There is no single solution that will address the data center challenge, hence the need for a holistic approach. For example, an organisation may choose to focus on reducing water consumption by doing less water-cooling, however they’ll need to consider the impact this will have on power consumption for air cooling. Although the scheme is modular, it encourages businesses to consider the impact throughout the organisation. As infrastructures scale, organisations can add other modules as required.
What role will digital trust standards play as AI-driven data centres expand toward 2030?
What we do over the next few years will impact the next 30 or 40 years. With the Middle East Data Center market expected to reach $7.70 billion by 2030, it’s important that organisations build capacity for today that is sustainable for the future. By aligning with international best practice, tech companies can ensure they build trust with clients, regulators and consumers that their data center facilities and operations meet global compliance and align with international best practice.
