A critical US law governing data center security and sustainability, the Data Center Security and Sustainability Act, is set to expire on June 30, 2026, according to a report from the Congressional Research Service. The law, enacted in 2022, required federal agencies to implement specific security protocols and sustainability standards for data centers.
As of June 20, 2026, no replacement bill has been introduced in Congress, raising concerns among industry experts. The law's expiration could leave federal data centers without mandatory security updates and energy efficiency targets.
The Data Center Coalition, a trade group, has urged lawmakers to renew the legislation, citing the growing importance of data centers for AI and cloud computing. However, legislative gridlock has stalled progress.
Without a new law, federal data centers may revert to older, less secure practices, potentially increasing vulnerability to cyberattacks and energy waste.
