Security at the
core.

o137 is designed from the ground up for highly regulated industries. We meet you where your data is.

Enterprise-Grade
Security & Infrastructure

Built for mid-size companies—regulated or not. Cloud-first; optional sovereign (SecNumCloud, VPC) or on-prem when you need it. AES-256 at rest, TLS 1.3 in transit. RBAC and zero-retention—we never train on your data.

Flexible Deployment

Cloud-first. Optional sovereign (SecNumCloud, VPC) or on-prem (air-gapped) when required. Helm charts and Docker/Kubernetes for self-hosted.

Security by Design

AES-256 at rest, TLS 1.3 in transit. RBAC (Admin, Developer, Business, Auditor). Segregated Dev/Staging/Prod.

Data Control & Zero-Retention

Keep your data where you need it. Zero-retention policy; no customer data used to train foundation models.

Region

eu-west-1 (Paris)

Encryption

AES-256

Status

Operational

Compliance

GDPR Ready

# Deployment Config

deploy:

provider: "aws-private"

vpc_peering: true

encryption: true

On-Premise First

Deploy o137 via Docker or Kubernetes in your own VPC. No data ever leaves your perimeter.

Audit Logs

Every API call, agent thought, and workflow execution is logged with tamper-proof timestamps.

RBAC & SSO

Granular permission controls. Integrate with Okta, Azure AD, or Google Workspace out of the box.

Security at the core.

Enterprise-Grade Security & Infrastructure