How it works

Governance without
seeing your data.

CLEARANCE evaluates descriptions of AI actions against your governance rules — without ever receiving, storing, or processing the underlying data those actions relate to.

The 12-year-old version
The shop assistant and the rulebook.

Imagine you work in a shop. The shop has rules. "Do not sell alcohol to anyone under 18." "Do not accept returns without a receipt." Before you do anything for a customer, you check the rules.

You do not send the customer to head office to be checked. You do not photocopy their ID and post it to someone. You just ask yourself: does what I am about to do break any of the shop's rules? If yes, stop. If no, carry on.

CLEARANCE works exactly like that.

Your AI is the shop assistant. CLEARANCE is the rulebook. Every time your AI is about to do something, it checks the rulebook first. CLEARANCE never reads your files. It never stores your customers' data. It only ever sees one thing: a description of the action the AI is about to take.

"CLEARANCE checks that description against your rules. Pass or fail. That is it. Your data stays where it is. CLEARANCE never touches it."

See it working live

Try a governance evaluation

Select an AI action below. Watch what CLEARANCE receives and evaluates — and what it never sees.

CLEARANCE // LIVE EVALUATION ENGINE
SOVEREIGN INFRA ACTIVE
AI ACTION
Waiting...
DATA STRIPPED
Intent only
ROE GATES
C→A→B→D
VERDICT
Pending
CHRONICLE
Audit logged
Select an example AI action to evaluate
Or describe your own
CLEARED TO EXECUTE
// ROE CARD EVALUATION SEQUENCE
// CHRONICLE LOG ENTRY
// WHAT CLEARANCE NEVER RECEIVED
The data boundary

What CLEARANCE receives vs what it never sees

✗ Never received by CLEARANCE
Customer names, IDs, account numbers
Financial records or transaction data
Medical or health records
Legal or privileged communications
Personally identifiable information
Document content or file data
AI model outputs or responses
✓ What CLEARANCE evaluates
Action type (report / access / send / generate)
Data category (financial / health / legal)
Scope (single customer / batch / organisation)
Agent identity and authorisation level
Workspace and governance baseline
Timestamp and evaluation context
ROE gate sequence result

Why this matters for GDPR

Because CLEARANCE never receives personal data, it is not a Data Processor under UK GDPR Article 4(8). UK GDPR Art. 4(8)

The governance evaluation itself involves no personal data processing whatsoever. CLEARANCE processes action descriptions — which are organisational metadata, not personal data. Your Data Protection Officer has a clean answer to the question: "Does this create a new data processor relationship?"

Answer: No. CLEARANCE evaluates what your AI is about to do — not the data it relates to. The security guard checks your pass without reading your emails.

The Data Processing Agreement we provide with every subscription covers the small amount of organisational metadata CLEARANCE does hold — workspace configuration, evaluation counts, governance baselines. It does not cover personal data, because none flows to CLEARANCE.

Frequently asked questions

Questions from the field

Have you got clearance?

Sovereign AI governance. Live in under an hour. Free tier available.

Get Cleared →