Deployment Options for SAIG by Terraxon

SAIG by Terraxon supports multiple deployment models. Choose based on your sovereignty, security, and operational requirements.

EU SaaS

Hosted in the EU (Hetzner, Germany). Fully managed by Terraxon. Fastest time to value. Data stays in the EU.

Private VPC

Deploy in your own cloud VPC. Docker Compose or Kubernetes. Terraxon supports, you control the infrastructure.

On-Premise

Governance, PII detection, OCR, and policy evaluation run locally on your infrastructure. Forwarding to configured LLM providers is controlled by sovereignty policy.

Air-Gapped

Fully isolated deployment with no external provider calls. Suitable for local or approved in-environment model setups in classified or restricted environments.

Hybrid

Gateway runs on-premise for data sovereignty. Management plane in cloud for convenience. Combine control with operational simplicity.

Infrastructure requirements

  • Docker Compose or Kubernetes
  • PostgreSQL 16 (Keycloak), SQLite or PostgreSQL (audit)
  • Redis 7 (optional — attachment store, OCR queue)
  • Reverse proxy (Caddy recommended)
  • OIDC provider (Keycloak included)

Local processing

All PII detection uses local NER models and regex — no external NLP or OCR APIs. Audit records are written locally. Policy evaluation runs in-process. SAIG itself does not phone home or send telemetry.

Related resources

Request a Technical Walkthrough Back to Homepage