Sovereignty
The Cloud Act explained to a CFO in five minutes
Why the contract doesn't protect you, why "datacentre in Europe" isn't enough, and what really changes when the supplier is a US company. No jargon.
The transposition dates to 2024, but real enforcement arrives now. Strip away the noise and six concrete obligations and two dates remain. Here's what the regulation demands of a company with 80 to 500 employees, and what you can ignore.
Why the contract doesn't protect you, why "datacentre in Europe" isn't enough, and what really changes when the supplier is a US company. No jargon.
Anatomy of a real passive scan: forgotten subdomains, expired certificates, an open RDP port and three keys on GitHub. How it happens and how to close it.
What "AI in production" really means for an SME. Where it pays off, where it doesn't, and why orchestration matters more than the model.
Why the financial sector is discovering that the critical supplier register is the easy part. The hard part is the testing. Coming soon on this blog.
We state it in the price list, but what does it operationally mean to spin up a SOC for an SME in two days? The diary of a real onboarding. Coming soon on this blog.
Most of an SME's AI systems are minimal-risk. Working out which category you're in is the first step, and it's usually simpler than feared. Soon.
No automated newsletter, no sales sequence. One email when a note worth reading goes out. EU address, one-click unsubscribe.