Sovereignty

Whoever controls the data controls the conversation.

TALDEN was built for environments where digital sovereignty is not optional — it is a condition of operation. Fully offline. Technically verifiable. Compliant with the requirements of the German security framework.

Why sovereignty

The risk is not in the content. It is in the channel.

Cloud-based processing sends audio data over networks you do not control, to servers you do not operate, under jurisdictions that are not yours. For regulated organisations, this is not a data protection problem — it is a disqualifying condition.

Air-gap architecture

Air-gap architecture

All processing components — STT (Whisper), speaker diarisation (pyannote), summarisation (Mistral) — run exclusively on the workstation. No data path leads outside.

Compliance stack

Four layers. No gaps.

Certified

ISO/IEC 27001:2022

Binary Bunker GmbH is certified to ISO/IEC 27001:2022. The certificate applies at the company level and covers the full Information Security Management System (ISMS). Product-specific scoping documentation available on request.

Compatible

BSI IT-Grundschutz

TALDEN was developed to be IT-Grundschutz-compatible. The product follows the modelling requirements of relevant Bausteine. A Baustein mapping document is available on request.

Ready

VS-NfD-ready

TALDEN's architecture is designed for deployment in VS-NfD-accredited environments. Fully offline, no telemetry, no external API calls — no external data path breaks the accreditation of the workstation. A product-specific BSI Zulassung is in preparation.

Compliant

GDPR

TALDEN does not process personal data on external servers. No third-country transfer takes place. As there is no data processing relationship — TALDEN is a locally installed tool with no cloud back-channel — no Data Processing Agreement is required.

Platform certification iOS

iOS 26 — NATO-restricted approved

In February 2026, Apple, BSI, and NATO confirmed iOS 26 and iPadOS 26 as NATO-restricted capable consumer platforms — listed as Indigo-26 in the NATO Information Assurance Product Catalogue. TALDEN runs on this approved platform.

iOS page →

Technically verifiable

Firewall log as evidence.

TALDEN initiates no outbound connections. During an active recording session, no network activity is generated. This is verifiable via firewall log or network monitor — without trust, purely technically.

Session lifecycle

Audio data never leaves the device.

The audio buffer lives exclusively in RAM. After export or deletion, session data is fully removed. No raw data persists after the session completes.

Data retention

What is stored — and what is not

  • Audio buffer: RAM-only, discarded on session end
  • Transcript: stored locally, configurable retention period
  • Configuration: %APPDATA%\TALDEN\config — no cloud sync
  • Logs: session events only, no content, no network upload
  • After completion: no raw data persistence

BSI IT-Sicherheitskennzeichen

Status: In preparation

The BSI IT-Sicherheitskennzeichen documents compliance with IT security requirements at product level. Binary Bunker GmbH is preparing the application.

In preparation

Encrypted communication

Encrypted communication

OpenPGP fingerprint

0DEB F74E 2A9D 681B 8F18 D0EF C6FF ED12 811E 4A0D
Download public key (.asc)

OpenPGP key and fingerprint on the contact page.

Hosting All Binary Bunker GmbH systems are operated exclusively on European infrastructure. No data path leads outside the EU.

Documentation for your evaluation

Executive Briefing and Technical Briefing as PDF — ready for your internal review.

Executive Briefing (PDF) Technical Briefing (PDF)

Request technical assessment

For qualified organisations: architecture review, compliance documentation, and integration assessment.

Get in touch