build 2024.11 · sha 8f3a91c · all systems nominal SOC 2 TYPE II · ISO 27001 · GDPR · DORA

on-premise · model-agnostic · air-gapped ready

The AI your HR and ops teams
can finally trust — without sending a byte outside.

Sentinel OS is a private AI operating system that lives on your hardware. It runs the language models, the agent runtime and the data plane behind your people decisions — sealed, auditable, and governed by the keys you already hold.

Request a private demo → See the architecture

bytes leave your perimeter

employees per appliance

HRIS connectors

sentinel://hr-copilot ● live

$ sentinel ask "draft parental leave policy for DE"

▸ agent.plan

retrieve handbook/v9.pdf ✓
retrieve de-maternity-act-2024 ✓
draft policy · review against §4.2, §7 ✓
await legal approval · route to @m.schulz …

▸ result

Drafted 14 sections · 0 hallucinated clauses · legal review queue: 1 · audit hash 0x7af3…b21c

$ _

runtime v4.7 · sealed enclave all models local

quietly running inside

◆ NORTHWIND GROUP ◆ HELVETIA INSURANCE ◆ RENAULT TRUCKS ◆ MAERSK DIGITAL ◆ DEUTSCHE BAHN ◆ ENEL GREEN POWER ◆ BNP PARIBAS ◆ TOTAL ENERGIES ◆ THYSSENKRUPP ◆ ING BANK ◆ NORTHWIND GROUP ◆ HELVETIA INSURANCE ◆ RENAULT TRUCKS ◆ MAERSK DIGITAL ◆ DEUTSCHE BAHN ◆ ENEL GREEN POWER ◆ BNP PARIBAS ◆ TOTAL ENERGIES ◆ THYSSENKRUPP ◆ ING BANK

— 01 / capabilities

One runtime.
Every workflow your people team runs.

Sentinel OS is not a chat box with a logo on it. It is a governed environment — with retrieval, tools, memory and policy baked in — that ships ready to deploy across HR, L&D, IT and operations.

01 −73%

Policy copilot

Drafts, redlines and version-controls every policy against your internal handbook and current labor law — without a single prompt ever leaving the appliance.

drafting time

02 4.2×

Talent intelligence

Reads résumés, internal reviews and 1:1 notes to surface skills, growth paths and flight risk. Ranking models trained on your data, on your box.

shorter screening

03 200+

People analytics

Ask plain-English questions about attrition, comp bands, headcount planning. Answers come with the row, the source and the audit trail.

ready-made queries

04 11 hrs

Ops automation

Closes the loop between HRIS, payroll, IT provisioning and ticketing. Approvals, offboarding, access reviews — all in one auditable flow.

saved per employee

— 02 / security model

Designed by people who have shipped to defense and finance regulators.

Air-gapped by default

Runs on your hardware or your private cloud. No outbound calls, no telemetry, no model calls to third parties. The network cable is optional.

Cryptographic isolation

Per-tenant keys, sealed memory regions and TPM-bound model weights. Even with root, prompts and documents stay sealed to the workload.

Provable audit

Every prompt, retrieval and tool call is hash-chained to an immutable, locally-stored ledger. Exportable as signed bundles for compliance.

Bring your own model

Mix Llama, Mistral, Qwen or your own fine-tunes. Hot-swap them per department. The OS speaks to all of them through one governed runtime.

FIPS 140-3

cryptographic module

SOC 2 II

audited annually

ISO 27001

certified

EU AI Act

high-risk ready

— 03 / architecture

Four planes. Zero internet between them.

layer 1

Edge

› Voice
› Documents
› Ticketing
› SSO / SCIM

layer 2

Orchestrator

› Planner
› Tool registry
› Policy guard
› Memory

layer 3

Models

› HR-tuned 70B
› Code 34B
› Voice 8B
› Vision 12B

layer 4

Data plane

› HRIS
› Payroll
› L&D
› Encrypted lake

$ deploy on bare metal · vmware · k8s on-prem · air-gapped · sovereign cloud

— 04 / console

One operator surface for every model and every department.

Provision tenants, swap models, inspect the audit ledger, throttle a runaway agent. Designed for IT, security and HR — not just engineers.

sentinel.console / fleet: prod-eu

cpu 38% · gpu 71% · q/s 142

workspaces

HR — global
HR — EMEA active
Talent
Payroll ops
IT provisioning
Legal review

models

hr-tuned-70b

inference
code-34b

idle
voice-8b

inference

prompts today

48,217

+12%

p50 latency

184ms

−8ms

audit events

1.2M

sealed

blocked

policy

live activity

streaming · ws:connected

12:04:18 m.schulz drafted parental-leave policy · hash 0x7af3…b21c

12:04:11 system sealed audit ledger · block #48201

12:03:55 k.bauer queried comp-bands · scope:HR-EMEA · step-up

12:03:40 agent:onboard provisioned 3 laptops · cleared IT-107

12:03:22 policy.guard blocked: outbound call attempt · dropped

12:03:09 l.weber summarized 1:1 notes · 4 entries · redactions: 2

— 04b / try the runtime

Ask the sealed assistant.
It only ever reads what you type here.

A public preview of the runtime's policy guard and retrieval reasoning — running entirely in your browser. No prompt, no log, no fingerprint leaves the page.

sealed runtime · v0.9-demo · enclave:browser

● isolated

your prompt

0 chars · 0 tokens billed

runtime trace

sealed · 0 outbound calls

▸ runtime idle · awaiting prompt

▸ result

— sealed assistant —

audit hash: — latency: 0ms

◇ This is a public teaser. The production runtime streams to your HRIS, applies your policy file, and writes every exchange to a sealed, hash-chained audit ledger.

workloads running in production today

▸ draft offer letters ▸ summarize exit interviews ▸ redline vendor contracts ▸ triage IT tickets ▸ route access requests ▸ answer payroll questions ▸ score internal mobility ▸ plan headcount ▸ review performance cycles ▸ draft offer letters ▸ summarize exit interviews ▸ redline vendor contracts ▸ triage IT tickets ▸ route access requests ▸ answer payroll questions ▸ score internal mobility ▸ plan headcount ▸ review performance cycles

— 05 / frequently asked

Questions we get from
CISOs, GCs and CHROs.

Does the OS ever talk to the public internet?

No. By default the appliance is fully offline. The only outbound traffic is the package update channel you whitelist — and that runs on a signed, air-gap-friendly mirror.

How is this different from running ChatGPT Enterprise?

Your data, weights, prompts and indexes never leave your perimeter. You own the keys, the model and the audit log. There is no vendor tenant behind a login.

What hardware does it need?

A single 2U server with one or two accelerators is enough for a 5,000-employee company. Larger deployments scale horizontally — the orchestrator is stateless.

Can it integrate with our existing HRIS?

Yes. Native connectors for Workday, BambooHR, ADP, Personio, SAP SuccessFactors and 40+ others. Custom sources go through a typed adapter SDK.

How are roles and access enforced?

Reuses your IdP. Scopes are mapped to a per-action policy file. Sensitive queries — compensation, medical, terminations — require step-up auth and are written to the audit log.

What about regulators and DSAR requests?

One signed command exports the full data trail for a person, including every prompt, retrieval and access. The bundle is GDPR-, SOC 2- and ISO 27001-friendly out of the box.

— 06 / talk to us

See Sentinel OS on your data, in your four walls.

We will spin up a sandbox against an anonymized snapshot of your HRIS, walk you through a real workflow, and answer every security questionnaire your team can throw at us.

No vendor lock-in

export every model, prompt and index as a signed bundle

PoC in 14 days

on a 1U appliance shipped to your office

Flat per-seat pricing

no token-meter anxiety, no surprise overage

The AI your HR and ops teamscan finally trust — without sending a byte outside.

One runtime. Every workflow your people team runs.