Security, Confidentiality, and Default Model Governance
23VIP defaults to a sovereign, open-source AI stack hosted within Europe. Open-source models such as Mistral operate as the standard path across drafting tools because they support EU-hosted processing, never retain or train on your data, and are intended to keep the default workflow within European infrastructure. This architecture is designed for confidentiality-sensitive patent practice.
Default EU-Hosted Mode
Open-source models hosted in Europe by European providers.
- Standard 23VIP mode for claims, full drafts, and drawing workflows
- The AI does not train on your data and does not retain them
- Designed exclusively for confidentiality-sensitive patent work
Commercial Models on Demand
Claude, Gemini, and GPT remain available when a user or organisation explicitly chooses them, but they are never the default path and can be completely disabled by policy.
- Explicitly optional
- Suitable for teams with mixed AI policies
- Can be turned off per user or per organisation
Our Security Commitments
We have zero access to your input or output across all tools.
Your invention disclosures, technical specifications, and draft applications are never used to train any models, whether you use the default EU-hosted path or optionally select a commercial model. In the default EU-hosted path, the system is configured for ephemeral EU-hosted processing and is intended to minimize exposure outside the EU, including to non-EU legal regimes.
Data Processing Architecture
- Isolated processing: Each drafting session runs in a fully isolated European environment
- Encryption in transit: All data is protected with TLS 1.3
- Encryption at rest: Any temporary data uses AES-256
- Provider separation: Commercial models are an explicit opt-in only — never the default
GDPR Compliance
As a Belgian company with application logic and databases hosted in Europe, 23VIP is designed with GDPR requirements and European data protection principles in mind:
- Personal Data minimisation: We collect and process only what is strictly necessary
- Right to erasure: You can request deletion of your personal data at any time
Frequently Asked Questions
Does 23VIP's AI learn from my patent applications?
No - never. 23VIP enforces a strict no-training policy on all models. In the default mode we use only sovereign open-source models hosted entirely in Europe. Optional commercial models are also contractually prohibited from using your data for training.
Can 23VIP employees see my patent drafts?
No. Across all drafting tools we have zero access to your inputs or outputs.
How does 23VIP compare to general-purpose tools like ChatGPT for confidentiality?
Unlike general-purpose LLMs such as ChatGPT, which are based in the US, may retain your data, may use your inputs for training, and expose data to foreign surveillance laws, 23VIP defaults to sovereign open-source AI fully hosted in Europe. This architecture is intended to eliminate data retention, eliminate data use for model training, and reduce exposure to non-EU jurisdictions.
What is 23VIP's data retention policy?
In the default EU mode, the system is configured for ephemeral processing and not to retain inputs or outputs for model training after the session.
How does 23VIP help with EU AI Act compliance?
23VIP is designed from the ground up to meet the transparency and risk-management requirements of the EU AI Act. Furthermore, our AI Literacy Training programme helps your team fulfil Article 4 obligations with interactive training, testing, and verifiable certificates.
What about the environmental impact?
23VIP's default European-hosted open-source models have a significantly lower carbon and water footprint than typical US-based AI services. European data centres run on one of the cleanest grids in the world, and our efficient open-source architecture reduces overall energy consumption.
Contact for Security Inquiries
Email: christophe.ego@23vip.be
Company: 23VIP srl
VAT: BE0849.690.306