Trust, by architecture, not by badge.

The core anonymization engine is covered by a pending patent; the official prior-art search report confirmed novelty and inventive step for all claims.

Intent analysis and anonymization run on-device, prompts are not sent to a third-party classifier, so we can't see your data. Read the architecture rather than take our word. See how it works →

Data is encrypted in transit (TLS) and at rest (AES-256), with keys managed independently. Policies and control commands distributed to the fleet are Ed25519-signed and verified before they are applied.

Every enforcement decision is recorded in a cryptographically hash-chained audit trail, so any in-place change is detectable by re-verification, evidence packs for the EU AI Act, GDPR, NIS2, ISO 27001, SOC 2, HIPAA and PCI-DSS.

Nyx runs cloud-hosted, on-premise, or fully air-gapped. In sovereign and air-gapped deployments no telemetry leaves your enclave; policy updates arrive via signed, offline channels.

Engineered by practitioners with a decade of OT and critical-infrastructure security experience (IEC 62443). The fail-closed, signed-policy posture comes from that world.

We hold no certifications today. ISO/IEC 42001 (AI management) and SOC 2 programs are in progress, target 2027. Until then, trust is architectural and the audit records are yours to verify.

If you believe you've found a security vulnerability, please report it to contact@nyxai.io. We appreciate coordinated disclosure and will work with you on a timely fix.