Your data, your Kingdom, your control
Sovereignty is not a configuration flag bolted onto a cloud product — it is an architectural decision made at the foundation. No component of Clario360 depends on a public cloud to function.
One codebase, three worlds
The same components run as managed SaaS, inside your data centre, or in a fully disconnected environment — no feature cliff between them.
SaaS
Fully managed in a sovereign region. Fastest to value, with Clario360 operating the platform for you.
- In-Kingdom hosting
- Managed upgrades & SLOs
- Elastic by tenant
On-premise
Runs inside your own data centre under your control, using the identical components as the managed service.
- Your infrastructure
- Your operations team
- Same codebase as SaaS
Air-gapped
A static-binary core with no cloud-only dependencies, deployable into fully disconnected, classified environments.
- No external calls required
- Static binaries, portable
- Classified-environment ready
Frameworks mapped, not promised
EHKAM ships with the Kingdom's frameworks pre-loaded and a unified control library, so evidence collected once satisfies every mapped regulation at the same time.
NCA ECC / CSCC
National Cybersecurity Authority essential and critical controls
SAMA CSF
Saudi Central Bank cybersecurity framework
PDPL
Personal Data Protection Law alignment
ISO 27001
Information-security management baseline
NIST
Control mapping for international alignment
Najiz / ZATCA
Government-platform integration where applicable
Defence built into the platform
Identity & access
One IAM with RBAC, federated to your own IdP, enforced at the gateway.
Tenant isolation
Per-tenant event partitions and data boundaries — no cross-tenant reads.
Immutable audit
Every action attested to a tamper-evident, exportable trail.
Encryption in transit
Replication and events compressed, encrypted and resumable.
No cloud-only dependencies. Anywhere.
The replication core is a static binary. The platform runs disconnected. Data stays in-Kingdom by construction — not by policy you have to trust.
Review the controls with our security team
A working session mapped to NCA, SAMA and PDPL — against your environment and your auditors' requirements.