IONOX sits between your people and every AI system they touch — giving compliance, risk and security teams the visibility, policy control and audit trail demanded by the AI Act, DORA, NIS2 and GDPR. Built in Europe. Governed by European law.
ChatGPT, Copilot, Gemini, Claude — adopted team by team, with no CISO, no DPO, and no compliance officer in the loop. By 2027, European regulators will ask you to prove exactly what your organization does with AI. Most companies cannot answer.
You don't know which AI tools are used, by whom, or with what data. Shadow AI is already deployed at scale inside your organization.
Customer records, PII and confidential documents are pasted into external models. There is no policy layer to intercept, mask or redirect them.
The EU AI Act, DORA and NIS2 require demonstrable oversight of AI usage. Screenshots and policy documents are not an audit trail.
US-based AI governance tools fall under the CLOUD Act. Your data — and the governance layer protecting it — remains exposed to non-EU jurisdiction.
IONOX is a gateway that sits between your workforce and the AI systems they use. Every interaction is inspected, classified, and either routed, redacted, or recorded — according to the policies your compliance team defines.
Every prompt is classified at the moment of submission. Sensitive content is blocked, masked or rerouted according to rules your compliance team owns — not the AI vendor.
Route general questions to commercial models. Route sensitive prompts to a local Ollama deployment inside your perimeter. One policy layer, multiple destinations.
Full lineage for every interaction — user, prompt, classification, decision, model, response. Exportable in the structure DORA and the AI Act expect, not a CSV dump.
US-based AI governance platforms — however well-engineered — operate under the CLOUD Act and FISA 702. The layer meant to protect your data is subject to a foreign legal order. IONOX is structurally different.
IONOX Group BV is Dutch-incorporated. Ownership, decision-making and data stay within EU jurisdiction.
Deployed on EU-native clouds (Hetzner, Scaleway, OVH). No US hyperscalers in the data path.
For regulated data, prompts are rerouted to a local model deployment inside your own perimeter. Your most sensitive prompts never leave.
Built by a team that started with GDPR and AI Act article mappings — not added them in v2.
European enforcement has moved from warning to penalty. Regulators issued €1.2 billion in GDPR fines in 2024 alone. The AI Act raises the ceiling further. For a mid-market institution, a single material incident now exceeds a decade of governance investment.
Enforceable since February 2025. Whichever is higher — the fixed amount or 7% of worldwide annual turnover. For AI use cases that fall under Article 5 prohibitions, there is no compliance pathway. Only prevention.
Applies from August 2026 to any deployer of high-risk AI — including financial scoring, recruitment and fraud detection systems. Covers failures in risk management, logging, human oversight and technical documentation.
Enforcement expanded notably into financial services. A Spanish bank was fined €6.2M for inadequate security measures. Regulators now explicitly scrutinize AI-related data handling.
IONOX is a founder-led European technology company. Built in the Netherlands, serving regulated institutions across the EU.
Background in governance, risk and compliance. Leads strategy, design partners, and commercial relationships. Spent years inside regulated environments watching AI arrive without oversight.
Leads platform architecture and engineering. Designs the gateway, policy engine, and AI agent layer. Focus on model-agnostic routing and a local-first deployment pattern.
Runs finance, contracts, and operational governance. Ensures every pilot, DPA and customer engagement is structured to hold up under regulator scrutiny and investor due diligence.
Selected mid-market financial institutions get a 60-day pilot of the IONOX platform, direct access to the founding team, and shape the product roadmap that will serve European finance for the next decade.