Deployment Options | SAIG by Terraxon

Choose your deployment model

SAIG supports multiple deployment models depending on sovereignty, security, and operational requirements. All PII detection and anonymization processing runs locally — no external NLP or OCR APIs for governance processing.

EU SaaS

Hosted in EU (Hetzner, Germany). Fully managed by Terraxon. Fastest time to value. Data stays in the EU.

Private VPC

Deploy in your own cloud VPC. Docker Compose or Kubernetes. Terraxon supports, you control the infrastructure.

On-Premise

Full on-premise deployment. All PII detection, anonymization, and policy evaluation run locally — no external NLP or OCR APIs. All governance processing runs on your hardware.

Air-Gapped

Completely isolated deployment with no internet connectivity. Suitable for classified or highly restricted environments.

Hybrid

Gateway runs on-premise for data sovereignty. Management plane in cloud for convenience. Combine the best of both.

Infrastructure requirements

Docker Compose or Kubernetes
PostgreSQL 16 (Keycloak), SQLite or PostgreSQL (audit)
Redis 7 (optional — attachment store, OCR queue, cache)
Reverse proxy (Caddy recommended)
OIDC provider (Keycloak included)