Your customer data stays on your infrastructure. Always.

Obsydia Core0 is a self-hosted PII vault with field-level encryption, GDPR Art.17 erasure, and a full audit trail — deployed inside your own network, under your control.

Request demo access See how it works →

THE PROBLEM

GDPR compliance should not mean trusting a third party with your data.

Most compliance tools are SaaS — your customer records leave your infrastructure the moment you integrate them. Obsydia is different: it runs entirely inside your network. No outbound data. No shared tenancy. No exceptions.

CORE0

One product. Built for compliance-driven teams.

A hardened infrastructure layer that handles the sensitive parts — so your application does not have to.

PII Vault

Tokenise personal data at the field level. Your application stores tokens — never raw PII. Encryption keys never leave Core0.

GDPR Art.17 Erasure

Right-to-be-forgotten built in. A single API call deletes the record, purges the WAL, and issues a cryptographically signed erasure receipt.

Audit Trail

Every read, write, and deletion is logged with actor, timestamp, and tenant context. Immutable, exportable, and DPA-ready.

Self-Hosted

Runs on your own VPS or bare metal. No cloud dependency. Your data never leaves your infrastructure boundary.

mTLS Zero-Trust

Every service-to-service call is mutually authenticated. Certificates auto-renew. No plaintext internal traffic.

Multi-Tenant Ready

Hard tenant isolation at the storage layer. One Core0 cluster serves multiple clients, with zero data bleed between tenants.

Full technical overview →

WHO IT IS FOR

Built for teams that cannot afford a data breach.

CTOs & Engineering Leads

Deploy a hardened PII layer without building it yourself. gRPC API, Docker-compatible, fully documented. No black boxes.

DPOs & Compliance Officers

Art.17 erasure receipts, exportable audit logs, and a data processing architecture your legal team can actually explain to regulators.

HOW IT WORKS

Four steps from integration to compliance.

Deploy Core0 to your infrastructure

Bootstrap installs the full cluster — WireGuard mesh, Consul, KEYS, PII services — on your own VPS nodes. Takes under 30 minutes.

Connect via the Connector

Drop the Obsydia Connector Docker container into your stack. It proxies API calls to Core0 and injects your tenant identity automatically.

Store and retrieve PII through the API

POST personal data — get a token back. Your application stores only the token. Raw data never touches your application database.

Erasure and export on demand

One API call handles Art.17 erasure across all layers. CSV export satisfies Art.20 data portability. Everything is logged.

DOCUMENTATION

Read the technical whitepaper.

Architecture, security model, GDPR mapping, and deployment guide. Written for engineers and compliance teams.

Download whitepaper (PDF)

INSIGHTS

From the blog.

Writing about data security, GDPR, and what keeps CTOs up at night.

View all posts →

STAY UPDATED

Get release notes and early access.

Product updates and security advisories. Double opt-in. No noise.