Governed Private AI Infrastructure

Intelligence that never leaves.

Locs is the private AI infrastructure layer for sensitive enterprises — local LLM runtime, governed knowledge, signed offline intelligence updates, and an evidence layer your auditors can verify offline.

DATA EGRESS 0 RECORDS DEPLOYMENT ON-PREM / AIR-GAP BUILT BY mAIb TECH POWERED BY AOS-1
PERIMETER SEALED
GATE 01 — SIGNED IMPORTS ONLY
01
The problem

Enterprises want AI.
They cannot expose
their data to get it.

Locs exists for organisations where AI failure, data leakage, and weak governance are not acceptable.

01

Uncontrolled external AI use

Prompts, tickets, configs, and customer records flow into public LLMs today — invisible to security, irreversible once sent. Locs gives your teams a sanctioned alternative that never exports raw data.

02

Local models go stale and hallucinate

A local LLM alone is weaker than frontier models and frozen at its training date. Locs enriches it with governed internal knowledge and refreshes it through verified, signed intelligence updates.

03

No governance, no deployment

Security boards refuse AI they cannot permission, approve, audit, or reverse. Locs is built around RBAC, two-key approvals, prompt controls, a kill switch, and full rollback — governance is the product.

04

Auditors ask questions AI can't answer

What entered the AI? Who approved it? What did it affect? Can it be reversed? Locs answers all of it from a hash-chained, tamper-evident evidence layer.

02
Architecture

The governed knowledge lifecycle

Nothing becomes local AI knowledge unless it is classified, redacted, packaged, approved, versioned, and reversible. Watch the flow.

Ingest

SOPs & runbooksTickets / ITSM RCA reportsVendor manuals Sensitive data detectedCritical secrets blocked

Govern

ClassificationRedaction proof Knowledge packsTwo-key approval Security reviewRole permissions

Serve

Module-separated retrievalLocal LLM runtime Governed answer cardsConfidence & risk labels Fail-closed refusals

Improve

Knowledge gaps detectedSanitized outbound requests Outbound governance gateSigned offline bundles Versioned activation + rollback
0
Raw enterprise records sent to external LLMs
0
Security principles enforced in code
0
Actions receipted in the WORM audit chain
0
Days from install to audit-ready evidence
03
Trust controls

Governance built into every layer

Local deployment protects the data boundary. Locs governance protects everything inside it.

T-01

Secret blocking

Credentials, keys, and tokens are detected deterministically and refused ingestion outright.

T-02

Classification & redaction

Subscriber identifiers, IPs, and hostnames are masked before anything is embedded or served.

T-03

Two-key approvals

No one activates their own knowledge. Security-flagged content requires a distinct reviewer.

T-04

Role-partitioned knowledge

Knowledge is separated per module and filtered by role at retrieval time — not in the prompt.

T-05

Kill switch

One governor action halts every AI path — answers, activations, exports, and bridge serving.

T-06

WORM audit chain

Every action is hash-chained and append-only. Tampering with history breaks the chain visibly.

T-07

Full rollback

Every update carries a rollback ID and impact map: modules, roles, and answers it touched.

T-08

Air-gap mode

One switch removes the outbound path entirely. Intelligence enters only as signed offline bundles.

04
Signed offline updates

External intelligence, imported like firmware

Locs improves your local AI the way critical infrastructure imports software: verified, signed, tested, approved, and reversible — never as a live external data bridge.

  • Knowledge gaps become sanitized, generic intelligence requests — identifiers stripped, with a term-level diff and redaction proof.
  • External frontier models are treated as intelligence processors, never as sources of truth.
  • Updates arrive as Ed25519-signed bundles with provenance, permissions, risk classification, and an embedded test suite.
  • A human approves every activation. Every activation carries a rollback ID.
locs verify — signed bundle import
05
Category

Why local LLMs alone are not enough

Public LLMsBasic local LLMsGeneric RAGLocs
Enterprise data stays localNOYESVARIESYES — by architecture
Frontier-grade intelligenceYESNONOYES — imported, verified, signed
Knowledge stays currentYESSTALEMANUALYES — governed update packs
Role-permissioned knowledgeNONOBASICYES — enforced at retrieval
Approvals & rollbackNONORAREYES — two-key, reversible
Audit-ready evidenceNONOLOGS ONLYYES — signed, tamper-evident
Fail-closed on high riskIMPROVISESHALLUCINATESUNSCOREDYES — refuses, opens governed gap
06
Platform

One platform, five product layers

01LOCS CORE

Local AI runtime

Local LLM deployment with a model-adapter layer — Llama, Mistral, Qwen, or your enterprise endpoint — plus governed, module-separated RAG. Recommended defaults, never lock-in.

02LOCS BRIDGE

External intelligence bridge

Manual, scheduled, and knowledge-gap update modes behind a full outbound governance gate: sanitization diff, redaction proof, risk scoring, security review, signed export.

03LOCS EVIDENCE

Trust evidence centre

Hash-chained audit log, approval records, redaction proofs, rollback history — exportable as signed evidence packs your CISO can verify offline.

04LOCS BUNDLES

Signed offline updates

Versioned knowledge artifacts with provenance, verification results, permissions, embedded test suites, and digital signatures. The update path that works fully air-gapped.

05LOCS TELECOM

Telecom pilot suite

BSS/Charging, NOC, and Customer Care copilots built from real operator workflows — charging logic, alarm triage, RCA drafting, complaint handling — with governed answer cards.

GOVERNED BY AOS-1 TRUST

Assurance-ready

Kill switch, human approval gates, WORM audit, and lineage IDs implemented to the AOS-1 Operating Assurance Standard — with signed execution receipts for continuous proof.

07
The 90-day pilot

Install to audit-ready evidence in 90 days

A fixed-scope program that proves governed private AI on your premises — and ends with an executive conversion pack, not a slide deck.

DAYS 01–15

Local deployment

Appliance install, local LLM configuration, roles and RBAC, classification rules, outbound governance posture, kill-switch drill.

DAYS 16–35

Knowledge ingestion

SOPs, manuals, ticket and RCA samples into BSS, NOC, and Care knowledge spaces — classified, redacted, permissioned, and approved through the workflow.

DAYS 36–55

Copilot activation

Governed answer cards live with pilot users. Source citations, confidence scoring, escalation behaviour, and refusal policy validated against real questions.

DAYS 56–75

Controlled intelligence updates

Knowledge gaps closed through the full loop: sanitized outbound requests, signed offline bundles, import verification, test suites, activation — and a live rollback demonstration.

DAYS 76–90

Evidence & conversion

Signed evidence pack verified in front of your security team, knowledge-quality metrics, and the full rollout roadmap with pricing.

08
Commercial model

An infrastructure program, not a subscription toy

Enterprise installation
£150k–£300k+
  • Local AI appliance deployment
  • Local LLM setup & governed RAG
  • Telecom onboarding & knowledge ingestion
  • Approval workflows & audit layer
  • Initial copilots, training, handover
Managed Private AI Program
Annual
  • Periodic knowledge refresh & gap closure
  • Signed offline bundle generation
  • Governance reviews & answer-quality evaluation
  • Evidence support for audits
  • Module expansion planning
Annual support
Contract
  • Maintenance, patches, appliance updates
  • Compatibility & platform reliability
  • Backup and recovery support
  • Technical support SLAs
09
FAQ

Questions security teams ask first

Privacy & architecture
Does any of our data ever reach an external LLM?

No raw enterprise data, ever. The only thing that can leave is a sanitized, generic intelligence request — after identifier stripping, a reviewable diff, a redaction proof, admin approval, security review where risk demands, and a digital signature. In air-gap mode even that path is disabled.

Which local models does Locs run?

Locs ships with recommended open-weight defaults for predictable pilots and abstracts the runtime behind a model-adapter layer — Llama, Mistral, and Qwen family models, or an enterprise-provided endpoint. You are never locked into one model family.

Can Locs run fully air-gapped?

Yes. The appliance requires no external connectivity. Intelligence updates arrive as signed offline bundles moved by your approved media process, verified and tested locally before activation.

Governance & security
What stops sensitive content entering the knowledge base?

Deterministic, security-reviewable detectors — not a model. Critical secrets (credentials, keys, tokens) block the document outright; subscriber identifiers, IPs, and hostnames are redacted before chunking; contextually sensitive content is routed to security review. Every detection is receipted.

What happens when the AI doesn't know the answer?

On high-risk topics Locs does not improvise: it states that approved knowledge is insufficient, shows what is missing, and opens a governed knowledge-gap request. Low-risk topics may receive cautious guidance clearly labelled as generic advisory.

Can the AI change our production systems?

No. Locs observes, retrieves, summarizes, recommends, and governs — humans execute all actions through your existing change processes. Assisted execution only, by design.

What does "governed by AOS-1 Trust" mean?

Locs implements the AOS-1 Operating Assurance Standard's runtime contract: a kill switch checked before every AI action, human approval gates on material changes, an append-only hash-chained audit log, lineage IDs on decisions, and signed execution receipts for continuous, verifiable proof.

Deployment & pilot
How does Locs deploy?

Phase one is a portable hardened appliance (Docker Compose) installed inside your environment; Kubernetes and fully embedded high-security deployments follow. The local LLM, data, knowledge base, prompts, and inference always remain on your premises.

What do we have at the end of the 90-day pilot?

A working governed private AI deployment with your own knowledge, live copilots for BSS, NOC, and Care, closed knowledge gaps via signed updates, a demonstrated rollback, and a signed evidence pack — plus the executive conversion pack with rollout roadmap and pricing.

BUILT BY mAIb TECH

Locs is designed and engineered by mAIb Tech — built from firsthand telecom operations experience, not generic AI theory.

POWERED BY AOS-1

Runtime governance runs on the AOS-1 agentic operating system: kill switch, approval gates, WORM audit, and signed execution receipts.

Ready when you are

Keep your AI local, locked,
and defensible.

Book a technical briefing for your CTO, CISO, and AI governance board — or start scoping a 90-day telecom pilot.