Data Sovereignty
You choose where your data lives.
AuxoAI does not operate a shared data environment. There is no central AuxoAI cloud that member data
passes through. Every deployment is scoped to the institution's own infrastructure.
On-Premise
Fully self-hosted
AuxoAI runs within your data centre. No data leaves your network
perimeter. Full control over access logs, audit trails, and retention policy.
Regional Cloud
Deployed in your jurisdiction
For institutions using cloud infrastructure: AuxoAI deploys within
your existing cloud tenancy (AWS CH, Azure Switzerland North, or equivalent). Data residency
stays within your chosen region.
AI Model
Your choice of model
BYOK (Bring Your Own Key): connect Claude, GPT-4o, or any
OpenAI-compatible model using your institution's own API key. Or run a local open-source model
(LLaMA, Mistral, Apertus) entirely on-premise.
No Training
Data never used for model training
Member data processed through AuxoAI is never used to train or
fine-tune AI models — ours or any third party's. This applies regardless of which AI model is
selected.
Deployment Matrix
Three deployment modes. One integration approach.
Each mode is available from day one. The choice is yours, and can evolve as your
institution's requirements change.
| Feature |
On-Premise |
Regional Cloud |
Managed (SaaS) |
| Data leaves institution network |
Never |
Stays in your cloud tenancy |
Encrypted, isolated tenant |
| AI model hosting |
Local (open-source) |
Your cloud or BYOK |
BYOK or managed |
| Audit log access |
Full (institution-controlled) |
Full (institution-controlled) |
Full export on request |
| Data residency guarantee |
Your building |
Your chosen region |
Configurable |
| Recommended for |
FINMA Tier 1, strict LPD compliance |
FINMA / OSFI mid-tier |
Pilot programmes, credit unions |
Regulatory Alignment
Jurisdiction-ready. Not jurisdiction-dependent.
AuxoAI does not prescribe a compliance outcome — we configure around yours. The
following frameworks have been reviewed against our architecture.
FINMA
Swiss Financial Market Supervisory Authority
AuxoAI supports FINMA Circular 2023/1 (Operational Risks and
Resilience). Data residency within Switzerland is available through on-premise or Swiss
regional cloud deployment. The AI processing layer is decoupled from data storage, enabling
institutions to comply with outsourcing notification requirements.
LPD / nLPD
Swiss Federal Act on Data Protection (revised 2023)
Member data is processed under a Data Processing Agreement. No
personal data is retained beyond the session unless the institution explicitly configures a
retention policy. Data subjects' rights (access, correction, deletion) are supported through
the institution's existing member portal.
OSFI
Office of the Superintendent of Financial Institutions (Canada)
AuxoAI aligns with OSFI Guideline B-10 (Third-Party Risk
Management, 2023). Deployment within Canadian cloud regions (AWS Canada, Azure Canada
Central) is available. Full audit trail and contractual right-to-audit provisions are
included in enterprise agreements.
PIPEDA
Personal Information Protection and Electronic Documents Act
(Canada)
Processing of personal financial data is governed by purpose
limitation: data is used only to generate the insights requested. No secondary use. Consent
flows are configurable within the institution's onboarding process.
PSD2 / DORA
European Open Banking & Digital Operational Resilience Act
For institutions operating under European regulation: AuxoAI
integrates with PSD2-compliant open banking APIs. DORA-aligned incident response procedures
and operational resilience testing documentation are provided on request.
Technical Controls
Encryption, access, and auditability.
Encryption
AES-256 at rest · TLS 1.3 in transit
All member data is encrypted at rest using AES-256. All
communication between AuxoAI components and external APIs uses TLS 1.3. Key management is
institution-controlled in on-premise deployments.
Access Control
Role-based, with full audit trail
Role-based access control (RBAC) with principle of least
privilege. All advisor and admin actions are logged to an immutable audit trail. Integration
with your existing SSO / Active Directory is supported.
AI Transparency
Explainable outputs, logged prompts
Every AI insight is traced to its source data. Prompt and
completion logs are available for compliance review. No black-box outputs delivered to members
without institutional audit capability.
Incident Response
Defined SLAs, documented procedures
Documented incident response plan aligned to institution's own
BCP. Maximum 4-hour notification SLA for security events. Full root-cause analysis provided
within 72 hours of any incident.
Contractual Governance
Every deployment includes a Data Processing Agreement.
A DPA is available as standard for enterprise and pilot agreements. It defines data controller /
processor roles, sub-processor list, retention limits, and audit rights. Reviewed by Swiss legal counsel
and Canadian privacy counsel.
Request the DPA and security documentation package.
Available to qualified institutions under NDA. Includes DPA,
architecture diagram, sub-processor list, and pen test summary.
Request Documentation