Infrastructure & Security

Discover how ATG offers high performance, robust security, and complete data sovereignty with a fully European infrastructure, self-hosted databases, and strict compliance with data protection standards.

2 min read

Built for Performance, Security, and Data Sovereignty

ATG's infrastructure has been carefully designed to deliver performance, security, and flexibility - while ensuring complete control over your data. Every technical choice reflects our commitment to European data sovereignty and best-in-class security practices.

Architecture

Loading diagram…

All of ATG’s infrastructure — frontend, backend, and storage/databases — runs on dedicated ATG servers at OVHCloud, with redundancy on a second physical site. That means a European provider and data not subject to US legislation (e.g. Cloud Act, Patriot Act). Primary site: Gravelines (France); secondary: Frankfurt (Germany). Your device talks only to the frontend and backend; the backend alone accesses storage and databases and is the only component that calls external services (e.g. LLMs, web search). Your data stays on ATG’s European servers; any call to an AI or other external provider goes through our backend under strict control.

Technologies in use:

  • Python for the entire backend, enabling seamless integration across platform services and modules
  • PostgreSQL for structured data and metadata, PGVector for AI-powered semantic search, S3 for documents and media. In practice this is Supabase, but self-hosted on ATG’s OVHCloud servers and fully managed by ATG
PythonPostgreSQLOVHcloud

Hosting & Data Redundancy

European infrastructure with European providers

  • Primary site: Gravelines (France); secondary site: Frankfurt (Germany) for physical redundancy
  • Hourly backups are automatically sent to the secondary site
  • All data resides on OVHCloud virtual private servers with high-performance SSD storage

Security certifications:

  • OVHCloud maintains ISO/IEC 27001, ISO/IEC 27017, and ISO/IEC 27018 certifications
  • These certifications guarantee compliance with international best practices for security and data protection

Data sovereignty principles:

  • All sensitive information is handled in a sovereign manner within Europe
  • Data sharing with non-European entities is limited or eliminated based on your organization's AI policy choice
  • ATG follows a minimal data retention policy - we notably do not store files from external connectors after processing

This ensures your knowledge stays under your control, within European borders.

Why This Matters

These technical choices ensure that ATG delivers:

  • Performance - Fast, reliable AI-powered search and chat
  • Security - Enterprise-grade protection with ISO-certified infrastructure
  • Sovereignty - Your data stays in Europe, under your control. And is not subject to Patriot Act, Cloud Act or other foreign legislations in you stay in EU policy
  • Privacy - Minimal data retention and no unnecessary file storage
  • Flexibility - Choose the AI providers that match your compliance requirements

Your knowledge, your rules, your infrastructure.