Sovereign & air-gapped
IntegraCI govern-and-orchestrates the CI/CD, scanners, clouds, and observability tools you already run. On the Sovereign plan it does that entirely inside your perimeter, up to a fully air-gapped network. Your data, your governed AI, and your compliance evidence never leave the boundary you control, and the isolation is something you can point at, not a promise you have to take on faith.
Why this is now a gate, not a preference
For regulated and government buyers, where data lives and who can reach it is set by law and by procurement rules, not by preference. A delivery platform that cannot stay inside the boundary is ruled out before the evaluation starts.
Data-residency regimes
A growing number of jurisdictions require government and financial-sector data to be managed, processed, and stored in-country, and stand up national data-centre and digital-government programmes you procure into. Offshore SaaS is often ruled out for these workloads.
Public-sector procurement
Government procurement frameworks increasingly score in-country data handling, local accreditation, and demonstrable sovereign-cloud capability as part of the bid. For sensitive workloads, a platform that cannot meet them is ruled out before the evaluation starts.
Regulated buyers
Banks, defense, and critical-infrastructure operators are legally constrained from putting sensitive workloads on public cloud or offshore SaaS. A delivery platform that phones home or routes data through a vendor tenant does not survive the review.
What makes it sovereign-fit
Each capability below is built into the platform and verifiable inside your own environment. Compliance is delivered as pre-built policy bundles mapped to frameworks such as SOC 2, ISO 27001, GDPR, FedRAMP, and NIST 800-53. They map to the frameworks. They are not a certification.
Run the whole platform on your own infrastructure, up to a fully disconnected network on the Sovereign plan. Data, governed AI, and compliance evidence never leave your boundary.
Updates move across the gap as signed offline bundles. There is no phone-home and no outbound dependency on us to keep running.
Mirror every image into your own Artifact Registry, signature-verified and digest-pinned. You pull from infrastructure you control, with provenance you can check.
Programmes and agencies are kept apart with database-enforced row-level security, not app-layer filtering. The separation holds even if application code has a bug.
Point governed AI at models you host yourself (BYO-LLM). Prompts, context, and outputs stay inside the boundary, and there is no token markup on your own key.
Every action is chained so tampering is detectable. Hand a regulator or oversight body a trail that holds up, and export the evidence on demand.
How it deploys
The same platform whether it is IntegraCI-managed or fully disconnected, installed where your systems already run.
Install with Helm into a namespace on your own Kubernetes cluster. The portal and the engine run inside your boundary, on infrastructure you already operate.
Air-gapped networks are supported as a first-class deployment. Mirror images to your registry, verify signatures, and run with no outbound path to us.
It is one platform whether IntegraCI-managed or fully air-gapped. The governance model, policy bundles, and audit trail are identical, so your evidence does not change shape with the deployment.
Who it is for
Sovereign fits the organisations across regulated markets whose workloads are bound by residency, accreditation, and oversight. Where a local legal entity is required, pair IntegraCI with a local partner who can hold the contract and stand up the deployment near you.
The Sovereign plan is custom-priced for air-gapped and sovereignty-bound deployments, with the support and offline update process that an isolated environment needs. The platform seat price covers IntegraCI itself. Your tools stay bring-your-own or an opt-in managed add-on, and governed AI runs on your own LLM key with no token markup. Compare the plans, then talk to us about a sovereign rollout.
Talk to us about a sovereign or air-gapped rollout, or read how self-host works on your own infrastructure.