Pryvan
Compliance, built in

Everything you need to prove your AI is legal.

Run AI on EU servers that are wiped after every session, plus tailored legal documents and EU AI Act risk intelligence — generated for you, not bolted on.

Instant legal pack

A jurisdiction-ready document pack, on request.

Generated for your specific model, business type and country of operation, relevant out of the box, not generic templates.

Included for every workspace

  • AI Usage Policy
  • GDPR Article 30 Record of Processing Activities
  • Privacy Notice Addendum
  • DPIA Lite
  • AI Interaction Disclosure Notices
  • Email & chatbot transparency templates
  • Human Oversight Policy
  • Incident Response Procedure
  • Regulatory Positioning Statement

On rented servers

Data Processing Agreement (Pryvan as Data Processor)

On an On-prem box

Client-facing DPA template (sign with your own clients & vendors)

Risk classification

Know your EU AI Act risk tier, before you start.

A few simple questions place your use in the right tier, unlock the matching documents, and warn you if your use case is restricted.

Minimal risk

Most internal productivity use. No specific obligations, Pryvan still gives you the documentation.

Limited risk

Customer or employee-facing assistants. Transparency duties, covered by generated disclosure notices.

High risk

HR & recruitment, credit scoring, legal interpretation, medical triage. Flagged and guarded before you deploy.

High-risk use cases we flag before deployment:

HR & recruitment decisionsCredit scoringLegal interpretationMedical triage
SME exemption navigator

Find the AI Act rules you don't have to follow.

The EU AI Act carries lighter obligations for SMEs in certain areas, and most SMEs have no idea. Pryvan identifies which exemptions apply to you, documents why you qualify, and includes it as a regulatory positioning statement in your legal pack.

A powerful head start: know exactly which rules don't apply to your business.

Check your risk tier in 2 minutes
The legal pack

Compliance documents, generated for you

Every Pryvan deployment ships with a tailored document set, the paperwork that usually takes a consultant weeks, ready for your DPO, auditor or board.

  1. 01

    Record of processing activities

    Your GDPR Article 30 record, pre-filled for your AI deployment.

  2. 02

    AI Act risk classification

    A documented assessment of which risk tier your use falls into and why.

  3. 03

    Data processing agreement

    A ready DPA covering Pryvan and its sub-processors.

  4. 04

    Sub-processor list

    A current, EU-focused list of every party in the chain.

  5. 05

    Technical & organisational measures

    The TOMs document auditors ask for, mapped to your setup.

  6. 06

    DPIA starter

    A data-protection impact assessment template, pre-populated for AI processing.

Documents are generated from your configuration and reviewed against current EU guidance. They give you a running start, not a substitute for your own legal sign-off.

Ongoing monitoring

Compliance isn't a one-time tick. Pryvan keeps it current.

Compliance health dashboard

Live status for every deployment, at a glance.

Regulatory update alerts

Notified when new guidance affects your setup.

Annual compliance report

Auto-generated, useful for audits and enterprise clients.

Compliant from day one

Give your auditors, and your clients, the proof they want.

Join the waitlist. We're onboarding GDPR-sensitive SMEs across Europe.