Most enterprise technology conversations stay in the same lanes: features, implementation timelines, cloud roadmaps, maybe a little AI. Legal and regulatory pressure rarely makes the shortlist, even though it can reshape what “normal” looks like for contracts, pricing, audits, portability, and how locked-in customers are allowed to become.
This topic is still emerging, which means nobody has a neat, settled playbook yet. Signals are showing up, though. Several of those signals are coming out of Europe, where regulators have historically moved earlier than other regions when it comes to competition, “gatekeeper” power, and interoperability.
Table of Contents
ToggleWhy this matters now
Enterprise software has always been sticky, but cloud has changed the nature of stickiness.
On-premises buyers used to have more leverage after go-live because they owned an installed environment and could postpone upgrades longer. Cloud shifts that balance. Subscription models, bundled functionality, complicated license metrics, audits, and expensive switching costs can push leverage toward the vendor over time.
That leverage shift is not just an “annoying commercial reality.” It is the kind of dynamic regulators tend to notice when it starts limiting choice, raising prices, discouraging switching, and blocking interoperability.
The consumer world is the early warning system
Regulators tend to intervene first where consumers are directly affected. That is one reason the European Union focused early on large consumer-facing platforms with the Digital Markets Act.
The details of that law are not the point here. The themes are the point:
- Concentration of power in “gatekeepers”
- Barriers that prevent competitors from reaching users
- Friction that discourages switching
- Restrictions that limit interoperability
Enterprise software is not identical to consumer platforms, but the market mechanics rhyme. Vendor ecosystems can become gatekeepers. Switching becomes prohibitively painful. Integrations become a lever for extracting more revenue or blocking competition. Those are the same kinds of ingredients that typically attract regulatory attention.
The cloud infrastructure market is already being investigated
One of the clearest signs that regulators are looking beyond consumer applications is the scrutiny of cloud infrastructure markets.
When cloud computing markets are highly concentrated, and when customers rarely switch, the risk is not only about pricing. The risk is about lock-in becoming the default outcome, which lowers competitive pressure over time.
A related concern shows up quickly in enterprise software decisions: if a handful of cloud providers dominate infrastructure, then the “choice” an enterprise thinks it has may be narrower than it appears. Price increases, contract restrictions, and limited portability can compound that effect.
What “lock-in” looks like in practice
Lock-in is not just “it’s hard to change ERP.” Lock-in increasingly shows up as:
- Contract terms that make switching expensive, slow, or risky
- License models that are difficult to interpret and even harder to audit internally
- Audits that become revenue events
- Restrictions on third-party support or third-party tools
- Fees or penalties triggered by integrations, data access, or “indirect” usage
- Cloud subscription pricing power that grows over time because switching is so painful
None of those items automatically equal wrongdoing. Taken together, they create a market reality where buyers have less leverage than they think, especially after go-live.
That is where legal and regulatory pressure starts to become relevant.
Interoperability is turning into a legal and commercial battleground
A major theme in enterprise technology right now is openness: application programming interfaces, tool ecosystems, integration platforms, data platforms, process mining tools, and more.
Some vendors embrace this trend because customers want composable architectures and faster innovation. Other vendors resist it, especially when third-party tools threaten revenue from the vendor’s own competing products.
This tension is already spilling into lawsuits and public disputes. The specific names change. The pattern stays consistent:
- A third party wants to connect to a dominant platform.
- The dominant platform creates friction, cost, or restrictions that make it hard to use the third party.
- The dominant platform positions its own competing product as the “preferred” path.
- The dispute becomes less about technical feasibility and more about market power.
Even if you never end up in court, these dynamics matter because they influence your options when you want to modernize incrementally. Interoperability is the difference between “we can add what we need” and “we have to buy what the vendor decides to sell.”
Vendor audits are becoming more central, not less
Audit activity has been part of enterprise software for a long time. The trend that is getting sharper is the “weaponization” of audits as leverage.
In the simplest form, the message looks like this:
- A vendor claims a compliance gap.
- The vendor asserts a large financial exposure.
- The vendor offers a “commercial path” to make it go away, often tied to moving to cloud, expanding footprint, or buying additional modules.
That pattern creates two big problems for buyers:
First, the customer gets pulled into a negotiation under pressure, often while trying to run a live business.
Second, the audit becomes less about compliance and more about extracting value.
Regulators notice those patterns when they become systemic.
What enterprise leaders should do while regulation catches up
Regulatory change is slow. Vendors move faster than regulators. Waiting for a government agency to “fix the market” is not a strategy.
The better approach is to operate as if the market will stay imperfect for a while, then protect yourself accordingly:
- Treat cloud and ERP decisions as long-term relationship decisions, not one-time purchases. Contract terms you accept today can govern your leverage for the next decade.
- Push for portability and interoperability up front. The moment before signature is usually the moment of maximum leverage.
- Assume audits will happen and plan for them. A self-audit mindset and clean internal documentation reduce panic and reduce the vendor’s ability to frame the story unchallenged.
- Avoid single-thread dependence. Overreliance on one vendor, one system integrator, or one licensing interpretation increases risk.
The bottom line
Legal pressure and regulatory scrutiny are not abstract topics anymore. Early signals suggest that governments are paying closer attention to how cloud markets and enterprise software markets concentrate power, discourage switching, and limit interoperability.
Regulators may eventually reshape the rules. Enterprise buyers still control the bigger lever right now: how they negotiate contracts, how they preserve options, and how they prevent “lock-in by default” from becoming the future operating model.
Eric is recognized globally as a leading voice in digital transformation and ERP strategy. Over the past two decades, he has helped hundreds of organizations – including Nucor Steel, Fisher & Paykel Healthcare, Kodak, Coors, Boeing, and Duke Energy – define their technology roadmaps, modernize complex operations, and deliver real business value from large-scale transformation initiatives.
As Founder and CEO of Third Stage Consulting, Eric leads an independent, technology-agnostic advisory firm focused on helping clients navigate the shift from traditional ERP to more flexible, AI-enabled Digital Enterprise Operations (DEO) models. His work spans ERP selection, implementation quality assurance, organizational change, and operating model design across a wide range of industries and geographies.
Eric is also a prolific thought leader, known for his pragmatic takes on AI, cloud, and enterprise software trends, as well as his firm’s benchmark research and frameworks for de-risking transformation. He is dedicated to helping executive teams cut through vendor hype, make confident investment decisions, and successfully reach the “third stage” of their digital evolution.