USE-04· Public sector

Sovereign AI for the public sector

Procedures, grants and citizen service with explainability and accountability.

EU AI Act Annex IIIGDPRDerecho administrativoTribunal de Cuentas

Data never leaves the perimeter

Inference over sensitive data with no third-party egress.

Fig — Client perimeter · data never leaves

Product anatomy

Seven pieces, one principle: data enters, is processed and is recorded — but never leaves.

COMP · 01

Sovereign Appliance

Certified hardware inside your datacenter. The compute boundary is physical.

COMP · 02

Local Inference Engine

Optimised models running on the appliance — no external calls.

COMP · 03

Data Orchestrator

Lineage, retrieval and context composition over internal sources.

COMP · 04

Secure Connectors

Integration with core, ERP, EHR or SCADA via signed channels.

COMP · 05

Governance & Policy Layer

RBAC, usage policy and guardrails enforced before every inference.

COMP · 06

Audit Ledger

Signed, immutable chain of every query, decision and artefact.

COMP · 07

Explainability Layer

Citations, weights and applied rules attached to every model output.

Practical example

A public grant, step by step.

01
Application
Citizen documentation enters the internal system.
02
Check
The model verifies requirements against current regulation.
03
Proposal
Proposed resolution with rationale and legal citations.
04
Sign-off
The competent officer signs; evidence is stored in the Chain.
05
Notification
Resolution notified to the citizen with a readable rationale.
06
Audit
Traceability available to the Court of Auditors years later.

Regulatory map

Norm · What it requires · How we respond.

Norm

What it requires

How Cognitive Server responds

EU AI Act

Essential public services are high-risk (Annex III).

Documentation, human oversight and logging by design.

GDPR

Legal basis, data minimization, data subject rights.

On-prem processing; citizen data does not leave the agency.

Derecho administrativo

Reasoned acts, contradiction and review.

Every proposal carries a readable rationale, signed in the Chain.

Tribunal de Cuentas

Audit of spending and procedures.

Exportable logs; reproducibility years later.

EU AI Act timeline: obligations confirmed for Dec 2027 / Aug 2028.

Outcomes

What changes when data does not move.

+50%

files resolved per FTE

-70%

formal errors

100%

auditable

-40%

average procedure time

Compliance at a glance

Frameworks covered by design.

Coverage is not an optional module — it is a direct consequence of the Cognitive Server architecture.

EU AI Act Annex III
Covered by design
GDPR
Covered by design
Derecho administrativo
Covered by design
Tribunal de Cuentas
Covered by design

Frequently asked

What sector teams ask us.

Next step

Let’s look at what this means inside your perimeter.

A 30-minute session to assess technical and regulatory fit. No generic demo.

Request a session See the architecture

Inference over sensitive data with no third-party egress.

Seven pieces, one principle: data enters, is processed and is recorded — but never leaves.

Sovereign Appliance

Local Inference Engine

Data Orchestrator

Secure Connectors

Governance & Policy Layer

Audit Ledger

Explainability Layer

A public grant, step by step.

Application

Check

Proposal

Sign-off

Notification

Audit

Norm · What it requires · How we respond.

What changes when data does not move.

Frameworks covered by design.

What sector teams ask us.

Does the AI decide on its own?

Let’s look at what this means inside your perimeter.