Governance
Sovereignty framework

Sovereignty by architecture
Scale AI across your institution. Keep full control of data, models, and operations.
We started Intric because the institutions that society depends on most - government, healthcare, education, critical infrastructure - were being left behind by every wave of technology, then told to catch up on someone else's terms. We think that is backwards.
You choose which model powers your system, and you can change that choice without disrupting operations.

Security Architecture
Set rules once. Enforce them everywhere
Policies determine which models, tools, and data can work together. Define them at the granularity your workflows require, from organisation-wide standards to the boundaries of a single assistant. With Intric, restricted environments are not a limitation. They are the operating reality we build for.

Always in control
Fine-grained control over models, data, and retention
Policies govern what runs where, and under what conditions.

Models and hosting
Choose which models are available, where they run, and which suppliers are permitted.

Data retention
Set retention at any level, from organisation-wide defaults to individual assistants. Expired data is permanently deleted. Zero data retention on all communication with LLM providers.

Subprocessors
Full visibility into which third parties process data, and the ability to restrict them. Only the context required for each task is shared with any subprocessor. Never your full dataset.
Data Flows
Every data flow, published and reviewable
Assistant interactions, knowledge pipelines, transcription, web search, MCP connections, OAuth integrations. All documented, all available as downloadable PDFs.

Deployment Options
| Category | Cloud (Sovereign EU) | On-premises | Air-Gapped |
|---|---|---|---|
| Infrastructure | EU-hosted, Intric-managed | Customer-managed | Fully isolated |
| Data residency | Specified EU jurisdiction | Your data center | Your network |
| Deployment | Managed service | Helm charts, turnkey | Complete independence |
| For | Most organisations | Organisations requiring full data isolation | Classified and defense environments |
On-premises deployment in days, not months
AUTHENTICATION AND ACCESS CONTROL
Works with the identity infrastructure you already run
SSO via OpenID Connect and SAML 2.0. Compatible with Microsoft Entra ID, Google Workspace, Okta, and most modern identity providers. Each user authenticates with their own credentials, including for connected systems.

Compliance and Certifications
Designed for regulated environments
ISO 27001 Certified.
GDPR Compliant by architecture, not configuration. Data protection by design, transfer restrictions enforced at platform level.
EU AI Act Risk management and data governance alignment. Policies create documented, enforceable governance records.
NIS2 Access control, asset management, and least privilege enforced by design.
Security requirements
Talk through your security requirements
Bring your architecture, your compliance checklist, and your questions. We walk through data flows, deployment, and the boundaries you need.
