The Mineral You've Never Heard of Controls Your Digital Future
Dysprosium. This name appears in no executive committee meeting. It shows up on no IT roadmap. No software vendor mentions it in their terms of service. And yet, without this mineral, your servers don't cool, your hard drives don't spin, and your data centers shut down.
I've dedicated an entire series of analyses to IT hardware value chains : Compute, Storage, Network. At every stage, the same observation kept surfacing like a refrain: behind the silicon, behind the wafers, behind the chips, there's a layer of dependency that runs even deeper, is even more concentrated, and even more dangerous. The layer of rare earth elements.
This post is a wake-up call. Not because catastrophe is imminent, supply chains are still functioning. But because CIOs who don't take this risk seriously today will find themselves tomorrow in the position of those who failed to anticipate the semiconductor shortage during COVID-19: suffering delays, cost overruns, and helplessness.
The Geopolitical Reality in Numbers
The numbers are brutal and leave no room for ambiguity.
Over 90% of the world's heavy rare earths come from China. Dysprosium (Dy), essential for high-temperature permanent magnets used in data center cooling systems and hard drive motors, is almost entirely Chinese. Neodymium (Nd), which forms the NdFeB magnets found in every HDD on the planet, follows the same concentration logic. Gallium (Ga), a critical material for compound semiconductors and LEDs, is controlled at over 90% by China, which has already restricted its exports twice since 2023.
In concrete terms, here's what this means for a CIO:
Risk to timelines. Every hard drive contains 2-3% of its weight in rare earth permanent magnets. Every server cooling system uses critical magnetic materials. When China decides to restrict exports, as it did for Gallium in July 2023, then for Germanium, IT hardware delivery times multiply by two, then by three. Remember COVID-19: companies that ordered servers in March 2021 received them in September.
Risk to budgets. The hyper-concentration of a market in a single geographic supplier creates price volatility that no framework agreement can protect against. The price of Dysprosium has fluctuated from $200 to over $600 per kilogram in less than five years. When your server vendor absorbs a 300% increase on a critical component, it gets passed on. Forecasting your IT costs becomes a gamble, not a plan.
Risk to continuity. A rare earth supply disruption is no longer an academic hypothesis. It's an imminent operational risk. Tensions around Taiwan, Sino-American trade restrictions, Chinese export quotas : any one of these factors can, overnight, freeze your most strategic projects.
Why Your 2026 Roadmap Is Directly Threatened
The rare earth problem isn't a "long-term" topic you can delegate to a working group and forget. It impacts your decisions today.
Fleet Renewal
If your plan includes a major refresh of your server or storage infrastructure in 2026-2027, you need to factor supply risk into your timelines. A six-month delay on a storage array delivery doesn't just push back a technical project. It delays an entire business program, with cascading impacts on revenue and compliance.
AI and HPC Projects
The explosion in GPU demand for artificial intelligence has created unprecedented pressure across the entire hardware value chain. Nvidia H100 cards and their successors require components whose manufacturing depends on critical materials. When everyone wants the same thing at the same time, and the source is singular, the laws of supply and demand are merciless.
European Compliance
The European Critical Raw Materials Act (CRMA) and Chips Act impose new requirements for supply chain traceability and material recyclability. If you don't prepare your procurement processes to incorporate these criteria now, you risk having to restart your purchasing processes from scratch when the obligations come into full effect.
CIO/CTO Playbook: Three Actions for Active Resilience
Waiting for European regulation to take effect is a strategic mistake. The CRMA and Chips Act lay out a framework. But a framework without action is just another document. Leaders act now.
1. Stress-Test Your Suppliers, Not Just Your Infrastructure
Most CIOs test the resilience of their applications, networks, and databases. How many test the resilience of their hardware supply chain? Almost none.
Systematize geographic multi-sourcing in your procurement processes. Require your hardware vendors to document the provenance of their critical components. Ask the uncomfortable question: "If China blocks Gallium exports tomorrow, how quickly can you deliver?" If your supplier can't answer, that's a red flag.
Challenge your partners: what is THEIR resilience strategy? Have they diversified their rare earth supply sources? Are they working with secondary suppliers in Canada, Australia, or Brazil? The answers to these questions determine the real strength of your supply chain, not the SLA printed on the contract.
2. Move from Obsolescence Management to Continuity Architecture
The traditional IT renewal logic, replacing your fleet every three to five years on a predictable cycle, no longer works in a world where supply is volatile. The entire approach needs rethinking.
Prioritize modular, repairable hardware. A server where you can individually replace the processor, memory, or storage without swapping the entire chassis makes you less dependent on a complete delivery. Negotiate supply continuity clauses that go beyond standard SLAs. Demand commitments on spare parts availability for a minimum of five years.
Extending your hardware lifecycle is no longer a matter of budget optimization. It's a survival strategy. Every additional year of server life is a year during which you're not exposed to supply disruption risk on a critical component.
3. Make Your Procurement "CRMA-Ready"
The Critical Raw Materials Act sets clear targets for 2030: local extraction of at least 10% of European needs, 40% processing, 25% recycling, and no more than 65% dependency on any single third country for each critical material. These numbers will become evaluation criteria in public procurement and, by cascade effect, in private tenders.
Integrate CRMA targets as selection criteria in your IT procurement now. Ask your suppliers about their component recyclability policies. Demand transparency on rare earth provenance. You're securing your investments for 2030 and aligning your IT strategy with European industrial strategy. It's a competitive advantage as much as an upcoming obligation.
IT Sovereignty Is Measured in Kilograms of Dysprosium
We talk a lot about digital sovereignty in Europe. We debate data localization, the Cloud Act, European alternatives to Big Tech. These are essential topics. But they obscure an even more fundamental dependency: the raw materials that make our entire infrastructure physically possible.
IT sovereignty isn't a political concept. It's a resilience KPI. And that KPI is measured as much in service availability as in tonnes of recycled Neodymium, in diversity of supply sources, and in the ability to operate even when a monopolistic supplier turns off the tap.
Your applications can be hosted in Europe. Your data can be stored in Europe. But if the hardware on which all of it runs depends 90% on a single country for its critical components, your sovereignty is a facade.
It's time to open your eyes to what's happening underground. Because it's there, in the mines of Baotou and Bayan Obo, that the reliability of your 2026 roadmap is being decided.