DORA. NIS2. The CLOUD Act, AI Act. The rules have changed.
Enclave helps regulated European organisations deploy private platforms for private AI and critical operations. On a platform you own. With no external dependency.
Private AI, identity, and operations, under your ownership and control.
Where you are today
What Enclave changes
DORA mandates ICT risk management, exit strategies, and incident reporting for EU financial entities. NIS2 broadens cybersecurity duties across essential sectors, including managed service providers and healthcare. The EU AI Act will require documented governance over high risk AI systems, with the main obligations now set for late 2027. The US CLOUD Act creates jurisdictional exposure for any organisation using American cloud providers, even with EU Private Cloud models.
ICT risk management, exit strategies, and incident reporting for EU financial entities.
Broader cybersecurity duties across essential sectors, including MSPs and healthcare.
Documented governance over high risk AI systems. Main obligations from late 2027.
Jurisdictional exposure for any organisation using American cloud providers.
Enclave addresses all four. A private platform with no CLOUD Act exposure. DORA compliant ICT control. Governance ready private AI.
DORA · CLOUD Act
DORA requires ICT risk management, exit strategies, and operational resilience from all EU financial entities. CLOUD Act exposure on US hosted infrastructure creates jurisdictional gaps Enclave removes.
DORA · GDPR Art. 9 · CLOUD Act
DORA applies directly. Health data drives AI risk assessment and pricing. GDPR Article 9 and CLOUD Act exposure make external AI a structural liability.
GDPR · Confidentiality
AI for contract review and case research creates sensitive data exposure when run through external APIs.
EU MDR · AI Act · GDPR Art. 9 · NIS2
The heaviest combined regulatory load. EU MDR, the AI Act, GDPR Article 9 health data, and NIS2. Clinical data and proprietary models must stay off external API infrastructure.
NIS2
NIS2 names managed security service providers as essential entities. Advising clients on jurisdictional risk while running your own stack on a US provider is a credibility gap.
NIS2 · GDPR Art. 9
NIS2 essential entity status. Health data across every workflow. Clinical decision support AI raises real governance questions.
Bring critical capability back under your control. Every platform deployment is configured to your needs.
Ideal for organisations adopting AI and bound by data governance or confidentiality rules. Fintech, legal, healthcare, medtech.
Run private AI inference on sensitive data. No external APIs. No third party rights over your training data. Fully auditable. You decide on models and capabilities. Bring your own agent frameworks and tools to support your teams. Usage runs on your own hardware with no per token meter.
Ideal for teams with strict data residency requirements or high sensitivity internal processes.
File and document sharing and a team collaboration suite. Employees can meet and collaborate with no external dependency.
Ideal for engineering teams with compliance obligations or organisations building proprietary software.
Git source control, build and deployment pipelines, container registries, secrets management, and development environments for dev, stage, and production.
Ideal for organisations ready to take ownership of their risks and control of their platform.
Private AI, collaboration suite, identity governance, secrets management, and developer CI/CD platform. Built for mission critical operations. Includes continuous power through UPS and failover management.
Private compute, storage, and Private AI capacity under your control.
Identity, collaboration suite, developer CI/CD platform, and SSO, governed.
Datacentre grade components for resilience and long term ownership.
Structured backup and recovery with no external dependency.
Collaboration workshops with your team.
Platform delivered, configured for your organisation, and documented.
You are not renting critical capability through per user licences, per token AI billing, and fragmented vendor agreements.
After platform deployment, your organisation owns the platform, the software stack, the private AI capability, and the data. All of it.
Designed for regulated and high trust environments. EU first governance, ISO 42001 readiness, and alignment with DORA third party risk requirements.
01
Map your dependencies and who controls them with a technical architecture self assessment.
02
Scope deployment architecture, requirements, and timeline.
03
Define deployment options, deliverables, and terms.
04
Platform delivered, configured for your use case and documented.
05
Collaboration workshops with your team on usage, maintenance, and daily workflows.
Enclave deploys private platforms for private AI, collaboration, developer operations, identity governance, secrets management, and critical workflows under the customer's ownership.
Enclave is for regulated and security sensitive organisations, including financial services, insurance, legal services, medtech, healthcare, cybersecurity providers, MSSPs, and MSPs.
The US CLOUD Act can create jurisdictional exposure when organisations rely on American cloud providers. Enclave is positioned around owned private platforms that avoid that exposure on critical paths.
For control and regulation
A free technical architecture self assessment. No compliance advice. Just a clear picture of your current situation.
For cost
You pay for every seat. You pay again for every token. See the full number for your team, and what owned infrastructure would cost instead.
