Sovereign AI
Trust & Security
Stop leasing your intelligence. Own it.We build secure AI infrastructure deployed on Sovereign Cloud Nodes (Single-Tenancy) or Air-Gapped On-Premise environments. Data never leaves your control. No training on your IP. Zero 3rd-party access.
Need a security review?
Our team is available to complete vendor security questionnaires for Enterprise plans.
Request Security Review →Security Architecture
Oxaide employs a defense-in-depth approach to security. Our infrastructure is hosted entirely on top-tier cloud providers with industry-leading physical security controls.
Encryption in Transit
All data transmitted between your device and our servers is encrypted using industry-standard TLS 1.3.
Encryption at Rest
Customer data is encrypted at rest using AES-256 encryption standards across all regions.
Data Isolation
Strict logical separation of customer data ensures your information is never accessible by other tenants.
Zero-Trust Access
Internal access follows least-privileged principles, with root access restricted to local Singapore personnel (Lead Architect oversight).
Continuous Backups
Database is backed up daily with point-in-time recovery to ensure data durability and business continuity.
Infrastructure Monitoring
24/7 automated monitoring of all critical systems with real-time alerting for anomalies.
Compliance & Privacy
Zero-Training Guarantee
We contractually guarantee that your data is NOT used to train our models or any third-party foundation models.
Sovereign Compliance
Oxaide provides a Legal Guarantee: Your data never trains our models.Fully compliant with PDPA (Singapore), GDPR (Europe), and CCPA (California). For Enterprise Sovereign plans, data stays on your hardware and never leaves Singapore territory.
- Right to be Forgotten (Data Deletion)
- Data Portability
- Data Processing Addendum (DPA) available
- Aligns with Singapore Official Secrets Act (OSA) for document handling
- Designed to facilitate IM8 Compliance for government agencies, including security incident management and access control logging.
Sub-processors
We partner with industry-leading service providers to deliver our Sovereign Agent service. All sub-processors undergo rigorous security assessments.
| Provider | Purpose | Standard Cloud Plan | Sovereign Enterprise Plan |
|---|---|---|---|
| Microsoft Azure | Secure AI Compute | USA / Global | Private Instance (Single Tenant) |
| Supabase / AWS | Database | Singapore (AWS) | Physically or Logically Isolated (AWS SGP) or Local |
| Ollama / Local | Local Agent Inference | N/A | Client Premises (Air-Gapped) |
| Cloudflare | Hosting & Edge | Global | Global or Direct Access (No Proxy) |
Due Diligence (DD) Kit
Procurement & Compliance Officers
We understand the rigorous requirements for critical infrastructure and government procurement. Oxaide is built by Rocketship Pte Ltd, a Singapore-registered entity (UEN: 201806463W) with over 7 years of track record in regional digital transformation.
Governance
- 100% Singapore Ownership
- IM8 Compliance Ready
- PDPA / GDPR Compliant
Technical
- Air-Gapped Deployment
- AES-256 Data Encryption
- Source Code Escrow Available
Availability & SLA
99.9%
Uptime Target
We maintain a high-availability infrastructure designed for enterprise reliability. Enterprise plans include priority support and custom SLAs.
*99.9% SLA applies to Oxaide Cloud/Intake. Air-Gapped/Sovereign deployments follow hardware-specific availability governed by client infrastructure.