On-premise by design

Your colleague just uploaded a contract for ChatGPT to summarise.
They broke UK GDPR.

Every prompt your team sends to a public LLM is a potential UK GDPR breach — names, addresses, NI numbers, case and claim references, financial figures, all out of your control the moment they leave your office. The ICO has issued fines of £14m and more for data security failures.1

1 Capita plc and Capita Pension Solutions Ltd — ICO monetary penalty notice, 15 October 2025 (combined £14m for UK GDPR security failures after a breach affecting over 6 million people). Illustrates the scale of ICO enforcement — not a typical fine for everyday staff use of public LLMs.

Trinito is an on-premise AI gateway that strips identifying information from your prompts before they leave your office. Your team gets the answers they need. Your data stays where it belongs. Your DPO stops sweating.

See it running See how it satisfies ISO/IEC 27701:2025
Built in the UK UK GDPR aligned ISO/IEC 27701:2025 aligned
Your team chat.trinito.local
Draft an offer letter for Sarah Patel for the 3-bed flat at 14 Cromwell Road, SW7 4XL. Her solicitor is at Henderson & Co.
4 findings · ready to approve
Trinito Gateway
ChatGPT · Claude · Gemini outbound
Draft an offer letter for [PERSON_1] for the 3-bed flat at [ADDRESS_1], [POSTCODE_1]. Her solicitor is at [ORG_1].
sanitised · sent
Flagged entity Placeholder token

Trinito implements the technical controls of ISO/IEC 27701:2025 — automated PII minimisation, de-identification, audit trail, transmission controls. The privacy controls your auditor wants, running from minute one. How →

73%
of UK office workers have pasted work data into a public AI tool.
0
prompts leave your office unredacted.
0
prompts ever touch Trinito's servers — sanitised or otherwise.
Problem

Every UK business has the same conversation in 2026. Staff are using ChatGPT and Claude because they make the work faster. The board wants a policy. Compliance wants an audit trail. IT wants something that does not require rewriting a year of working habits.

Blocking the public AI tools does not work — staff use their phones. SaaS-based DLP forwards your data through a third party. Running everything on local-only models means giving up the AI your team actually wants to use. The Trinito AI Gateway is the third option: a small appliance that sits in your office, watches what goes out, and removes what should not leave.

How it works

Three stages. One appliance.

  1. Prompt

    A staff member types in the Trinito chat window — browser extension for ChatGPT and Claude coming in Phase 2.

  2. Sanitise

    The Gateway scans the prompt, flags UK personal identifiers and contextual business references that could identify a client or matter, replaces them with placeholders, and shows the result for one-click approval.

  3. Send and rehydrate

    The sanitised prompt is sent to the chosen LLM. The response comes back, placeholders are restored, the user sees the original context.

Read the full explainer

What it protects

UK identifiers. Contextual business refs. Your rule pack.

Redacts UK personal identifiers (NI, postcodes, NHS numbers, etc.) and contextual business references (claim numbers, case refs, NHS client IDs) that could identify a client or matter — plus custom rules for your internal IDs.

UK postcodes National Insurance numbers NHS numbers VAT numbers IBANs and sort codes Credit cards (Luhn-validated) Email addresses Phone numbers Person names (NER) Organisation names (NER) Place names (NER) Money amounts in context Claim & case refs API keys and secrets

Custom rules per organisation — internal IDs, project codenames, and supplier names you define in minutes.

Attachments

Documents stay on the appliance. Only sanitised text leaves.

Drag a PDF, Word doc, spreadsheet, or scanned image onto the chat. Trinito extracts the text on-device, sanitises it, and sends only the sanitised version to the LLM. The original file never leaves your appliance.

PDF DOCX XLSX CSV PNG / JPG (OCR) TXT

How file uploads work

Who it is for

Built for the businesses pasting client data into ChatGPT today.

Coming as a Project Pack

Estate agents

Redact names, postcodes, case refs and offer values from every prompt — draft particulars and offer letters safely.

Coming as a Project Pack

Recruitment

Sanitise candidate names, salaries and CVs before they reach the LLM — rewrite specs and screen CVs with confidence.

Coming as a Project Pack

Financial advisers

Keep portfolios, sort codes and IBANs in your office — suitable for FCA-supervised firms on the Sovereign tier.

Coming as a Project Pack

Accountants

Protect identifiers, VAT numbers and figures on-premise — draft narratives, queries and tax notes without leakage.

Comparison

Four options, one that actually works.

Do nothing Block AI tools SaaS DLP Trinito AI Gateway
Staff use AI Yes Only on phones Yes Yes
Data stays in your office No Yes No — via vendor Yes
Vendor never sees your prompts No N/A Cleartext in vendor cloud Yes — redaction on your LAN
Audit trail on your own hardware None Partial Vendor-hosted Hash-chained on appliance
Works with ChatGPT / Claude / Gemini Yes No Some All three, plus more
Capex, not per-seat Per-seat One box, monthly LLM
UK-built Mostly US Yes
Pricing

Buy once. Subscribe lightly. Own the box.

Same sanitiser on every tier — only the LLM hosting changes.

Trinito Compact
From
£1,199ex VAT
  • Cloud-first · small teams
  • 5M tokens included on Trinito Cloud
Compare all plans
Trinito Standard
From
£1,499ex VAT
  • Hybrid · mid-size offices
  • 15M tokens included on Trinito Cloud
Compare all plans
Trinito Sovereign
From
£2,499ex VAT
  • Regulated industries · air-gap available
  • custom · air-gapped deployment
Compare all plans
Frequently asked

The five questions every IT buyer asks first.

Will it slow my team down?
No. The Gateway adds under 300 milliseconds per prompt on the default plan — most of which is the LLM you would have called anyway. Sanitisation runs on the appliance and is built to be invisible. The browser extension and chat UI both stream tokens as they arrive.
Can the redaction be trusted?
It is layered. UK-specific regex catches personal identifiers you can write down — postcodes, NI and NHS numbers, IBANs, Luhn-checked cards. A local NER model catches names, organisations and places. Pattern packs flag contextual business references (claim numbers, case refs, and similar) that could identify a client or matter. Custom rules cover your internal IDs. Every finding is logged. Every prompt can be reviewed before sending — by default on regulated tiers.
Which LLMs does it work with?
ChatGPT (OpenAI), Claude (Anthropic) and Gemini (Google) out of the box. Local models running on the appliance — Qwen, Llama, Mistral. New models added by the admin from a curated catalogue, or by bringing your own keys.
What happens if you go out of business?
The appliance keeps working. Local models run locally; your own OpenAI or Anthropic keys keep routing through the same redaction pipeline. The audit log is yours. We commit to a source-available fallback build for active customers if we ever close.
Is this for regulated industries?
The Sovereign tier ships with an air-gapped deployment option, suitable for FCA-supervised advisers, SRA-regulated firms, and healthcare admin. Audit logs are hash-chained on the appliance and store cryptographic hashes of prompt and response content — not the content itself — exportable on demand for compliance.

See all FAQs

Stop worrying about what your team is pasting into ChatGPT.

See it running Or read the security overview