DATA SOVEREIGNTY · AIR-GAP CAPABLE · UK GDPR COMPLIANT BY ARCHITECTURE

The only AI your
data governance team
will approve.

Most AI tools create compliance risk that offsets every productivity gain. HARBOUR AI eliminates the risk at the architecture level — not through a policy document, but by never moving your data in the first place.

REQUEST SECURITY BRIEFING ↓ DOWNLOAD GOVERNANCE PACK ENTERPRISE FEATURES →
THE PROBLEM WITH CLOUD AI

Cloud AI is powerful.
For regulated sectors, it's a liability.

Every time an employee pastes a client document, patient record, or sensitive email into a cloud AI tool, it becomes a data governance event your DPO didn't sign off on.

LEGAL RISK
Data leaves your control
Cloud AI providers are data processors under UK GDPR. Every query is a cross-border data transfer requiring a lawful basis, a DPIA, and a Data Processing Agreement — most organisations skip all three.
COMPLIANCE RISK
Sector rules are broken silently
SRA rules prohibit client data leaving the firm's control without consent. NHS DSPT requires data to stay within approved boundaries. KCSIE requires pupil data to be handled with strict controls. Cloud AI fails all three.
OPERATIONAL RISK
You can't ban it — so it happens anyway
Shadow AI usage is already happening in your organisation. Employees using personal ChatGPT accounts with work data is undetectable, uncontrollable, and creates ICO notification obligations you can't discharge.
IT POLICY RISK
Blocked on air-gapped networks
Clinical networks, court networks, defence contractor systems, and many school IT environments cannot route traffic to external AI APIs. Cloud AI is dead on arrival. HARBOUR AI is not.
THE ARCHITECTURE

Where your data lives.
Where it doesn't.

This is not a privacy policy. This is an architecture. The data never moves because the infrastructure that would move it doesn't exist.

DATA FLOW — HARBOUR AI DEPLOYMENT
📄 Your documentsYOUR MACHINE
↓ indexed locally
🧠 ChromaDB vector storeYOUR MACHINE
↓ queried locally
🤖 Ollama LLM inferenceYOUR MACHINE
↓ response streamed locally
💬 HARBOUR AI interfaceYOUR MACHINE
↓ stored locally
🗄 SQLite databaseYOUR MACHINE
EXTERNAL SERVERS
Nothing. Not one byte.
🔒
No data processor relationship
HARBOUR AI Ltd never receives, processes, or stores any data from your deployment. You are the sole data controller. No DPA is required between your organisation and HARBOUR AI Ltd — there is nothing to agree to.
📴
Air-gap capable by design
Once Ollama and your chosen model are downloaded, HARBOUR AI runs with zero network connectivity. No licence check, no telemetry ping, no CDN dependency, no update check — all optional and toggleable. Passes IT security policy on restricted networks.
🕵
Zero telemetry — verifiable in source
No usage analytics, no crash reports, no feature tracking. The source code is public on GitHub. Your IT security team can audit every network call the application makes — or confirm that it makes none.
🗑
Complete deletion — one command
All HARBOUR AI data lives in ~/.harbour-ai/ on the host machine. Deleting that folder removes every conversation, document, vector index, and user record. There is nothing on any external server to request deletion of.
SECTOR COMPLIANCE

Built for the sectors
that cannot afford a breach.

HARBOUR AI's architecture satisfies the specific data handling requirements of every major UK regulated sector — not through a policy statement, but through the absence of data movement.

🏥
NHS & Healthcare
NHS DSPT · CQC · UK GDPR ART.9
Article 9 special category health data never leaves the clinical network. NHS DSPT compatible deployment. No data processor agreement required — no data ever reaches a processor. Air-gapped updates available for locked-down clinical systems.
Legal & Solicitors
SRA CODE OF CONDUCT · UK GDPR · SRA PRINCIPLE 7
Client confidentiality maintained by architecture — matter files never touch a cloud server. SRA Principle 7 (client confidentiality) satisfied. No third-party processor has access to client communications or documents at any point in the AI workflow.
💷
Financial Services
FCA CONSUMER DUTY · MiFID II · UK GDPR
Meets FCA Consumer Duty data handling expectations. Full audit trail with SHA-256 chain hash satisfies record-keeping obligations. No external AI dependency creates operational resilience. Sensitive client financial data stays on regulated infrastructure.
🎓
Education
KCSIE 2023 · ICO CHILDREN'S CODE · OFSTED EIF
Pupil data never leaves the school network. ICO Children's Code compliance by design — no profiling, no cross-context data use, no data sold or shared. Works on restricted school IT networks where cloud AI APIs are blocked. No DPA with any external provider required.
🏛
Public Sector
UK GDPR · FREEDOM OF INFORMATION · NCSC
On-premise deployment meets public sector data sovereignty requirements. No cross-border data transfer to cloud AI providers — eliminates the need for Transfer Impact Assessments. Fully auditable system logs suitable for FOI and ICO investigations.
🔬
Research & IP-Sensitive
TRADE SECRETS ACT 2018 · NDA COMPLIANCE
R&D data, patent applications, and unpublished research never leave your network. No model training on your data — Ollama is inference-only on a static model. NDA obligations are not breached. Confidentiality maintained with no contract review required.
FOR YOUR DPO

The questions your DPO will ask.
The answers that close them.

HARBOUR AI — ALL PASS
  • Does data stay within our network boundary?
  • Is a Data Processing Agreement required?
  • Is a DPIA required before deployment?
  • Can we verify zero telemetry in the source code?
  • Can all data be deleted on request?
  • Does it work on our air-gapped network?
  • Are we the sole data controller?
  • Is there a tamper-proof audit trail?
  • Can we set data retention periods per category?
  • Is PII redacted before reaching the AI model?
  • Is the software auditable and independently verifiable?
  • Can we run a penetration test on the install?
TYPICAL CLOUD AI — ALL FAIL OR UNCERTAIN
  • Data sent to cloud infrastructure outside your control
  • DPA required — you are a data subject of their processing
  • DPIA strongly recommended — data sent to a third-party processor
  • Telemetry policy in ToS only — not independently verifiable
  • Deletion request process — may not cover model training data
  • Requires internet — blocked on restricted networks
  • You are a data subject, not the sole controller
  • Audit trail typically a paid add-on, if available at all
  • Retention controlled by the provider, not you
  • Your data reaches the model with PII intact
  • Proprietary — cannot audit the data flow
  • Penetration testing requires provider permission
GOVERNANCE DOCUMENTS

Everything your procurement
team needs.

Download, review, and share. All documents are designed to be used directly in governance reviews, DPO assessments, and IT security approvals.

📋
Data Governance One-Pager
What data is processed, where it lives, who controls it — formatted for DPO review and governance committee presentation.
↓ VIEW & PRINT
📄
Article 30 Record Template
Pre-filled Record of Processing Activities template for HARBOUR AI deployments. Drop into your Article 30 register.
↓ VIEW & PRINT
🔒
GDPR Compliance Statement
Full compliance statement covering lawful basis, data subject rights, retention, and the sole-controller architecture.
↓ VIEW
📖
Source Code Audit
Full source on GitHub. Your IT security team can audit every network call, every data path, and every dependency before approval.
↗ OPEN ON GITHUB
FROM THE FIELD

What data protection
professionals say.

— REAL QUOTES FROM DPOs AND CISOs COMING SOON —

Are you a DPO, CISO, or IT security lead using HARBOUR AI?
Email LOOSEKEYZ84@PROTON.ME to share your experience.

COMPARISON

How HARBOUR AI compares
on data governance.

DATA GOVERNANCE REQUIREMENT HARBOUR AI MICROSOFT COPILOT CHATGPT / OPENAI
Data stays on your premises ALWAYS Sent to Azure Sent to OpenAI
No DPA required NONE NEEDED DPA mandatory DPA mandatory
Air-gap / offline operation FULL SUPPORT Cloud required Cloud required
Zero telemetry — verifiable AUDIT AVAILABLE~ Policy only~ Policy only
You are the sole data controller YES Microsoft is processor OpenAI is processor
Tamper-proof audit trail SHA-256 CHAIN~ Paid add-on Not available
PII redaction before AI sees data 11 UK PII TYPES Not available Not available
Configurable data retention per type BUILT IN~ Limited Provider-controlled
GDPR Article 17 — right to erasure DELETE FOLDER~ Request process~ Request process
SRA / NHS DSPT / KCSIE compatible BY ARCHITECTURE~ Requires legal review~ Requires legal review
Independently penetration tested PASSED — June 2026 Not applicable Not applicable

Ready to brief your DPO?

Download the governance pack, share the source code link, and book a security briefing call.
Most DPO reviews complete in under a week once the architecture is understood.

↓ DOWNLOAD GOVERNANCE PACK REQUEST SECURITY BRIEFING ENTERPRISE FEATURES →