Nowhere you don’t want it to.

In short

We build on-premise or private-cloud solutions, GDPR by design, with role-based access and source code delivered. Your data stays yours — and no one else’s.

• On-premise or private cloud — your call
• GDPR by design, not bolted on later
• Role-based access, full audit trail
• Source code delivered — no vendor lock-in

Where your data physically lives

In the infrastructure you choose: on your server, in your datacenter, or in a private EU cloud. We never send sensitive data to public models without anonymisation and we never use your data to train other models. Period.

GDPR by design, not as an afterthought

Every project starts with data classification: what’s personal, what’s sensitive, what’s public. From there we build the roles, rights, retention, audit log and export/erase procedures. It’s not a chapter added at the end — it’s the foundation of the architecture.

• DPIA (Data Protection Impact Assessment) on request
• Full immutable audit log for every action
• GDPR rights (access, rectification, erasure) implemented natively
• End-to-end encryption for data in transit and at rest

AI models that don’t lock you in

We use a mix of self-hosted models (Llama, Mistral, Whisper) for sensitive data and cloud models (OpenAI, Anthropic) only for tasks that never touch personal data. You decide where the line is drawn — and you can move it any time.

Source code delivered — no captivity

You get the full source code, the documentation and the development environments. If tomorrow you want to switch your maintenance partner, you can. We don’t sell dependency; we sell results.