[Sovereign PaaS · for regulated EU enterprises]
Sovereign. AI-Ready. Verifiable.
The all-in-one sovereign Platform-as-a-Service for regulated EU enterprises. Deploy business-critical workloads on certified European infrastructure without sacrificing modern developer experience.
Runs on Outscale SecNumCloud infrastructure · ISO 27001 & HDS certified.
Platform topology
One control plane. Four verifiable surfaces.
From signed commit to sovereign substrate — every state transition is observable, gated by formal verification, and approved by a named human operator.
Why now
Three mandates becoming one infrastructure decision.
E-invoicing, EU sovereignty regulation and sovereign AI are converging on the same control plane. LeCloud is built for that decision.
PDP/PA and Peppol readiness
Mandate rollout waves through 2026 and 2027 — receive, then issue structured e-invoices via accredited PDPs.
NIS2 · DORA · Data Act · AI Act
Residency, control-plane independence and operator accountability are now regulator-grade expectations.
AI in production — without leaking control
Deploy AI workloads without moving regulated data into non-EU control planes or third-country jurisdictions.
The platform
From intent to audit evidence — in one verified loop.
Five stages. One artifact at every step: a signed, reviewable plan tied to an approver, a deploy, and probative evidence.
Pick a verified blueprint or describe intent.
Choose from Rectangle's curated blueprint catalog — Peppol AP, LTA, Keycloak, Mistral inference, Tyk gateway. Or describe intent and let AI Mode propose a signed plan against a verified blueprint.
- Curated catalog, not a blank Terraform file
- Blueprints carry residency and policy invariants
- Same artifact whether human or AI Mode authored
Peppol AP
verifiedPDP/PA-ready access point with SMP.
Keycloak Realm
verifiedSovereign identity with OIDC + SAML.
LTA Bucket
verifiedProbative archive aligned to NF Z42-013.
Mistral Inference
verifiedSovereign-hosted EU model endpoint.
Tyk Gateway
verifiedmTLS API gateway with quota guards.
ArgoCD App
verifiedGitOps app wired into the verified plan loop.
Every change becomes a signed, reviewable plan.
Plans land in a product console — resource tree, signed diff, residency check, policy invariants. Reviewers see exactly what will change before it changes.
- Signed plan hash bound to source commit
- Residency and network policy checked at plan time
- Destructive changes called out, not hidden
- namespace
- peppol-ap-prod
- services
- tyk-gateway
- peppol-ap@1.4
- keycloak-realm
- policy
- mTLS · quota=10k/s
+ namespace: peppol-ap-prod region: fr-par-secnumcloud+ tyk.gateway: quota=10k/s mTLS=on+ peppol.ap: version=1.4 pdp_pa=ready+ argocd.app: peppol-ap sync=manual~ keycloak.realm: rotated client secrets! requires approval: compliance.peppolHumans approve before infrastructure changes.
Approval is scoped to the compliance domain a change touches — compliance, peppol, identity, runtime. Approver identity is attached to the signed plan as evidence.
- Designed so apply requires explicit human approval
- Approval scopes match your regulatory perimeter
- AI Mode follows the same gate as humans
- plan hash
- 0x9c41…ab2e
- residency
- fr-par · SecNumCloud
- blueprint
- peppol-ap@1.4 (verified)
- retention
- 10y · NF Z42-013
- Residency check passed
- Verified blueprint resolved
- Plan diff reviewed
- Approver identity attached
GitOps keeps reality equal to signed state.
ArgoCD reconciles your sovereign estate against signed Git state. Drift is surfaced for review — never silently corrected. Your platform team operates one CLI, one console.
- ArgoCD reconciliation on a sovereign control plane
- Drift surfaces as a reviewable event
- One CLI for engineers, one console for reviewers
Plans, approvals, deploys and drift become evidence.
Every step lands in the LTA — archivage à valeur probante — aligned with NF Z42-013 and eIDAS timestamps. Exportable on regulator request, retained per regulatory horizon.
- NF Z42-013 aligned · eIDAS-grade timestamps
- Configurable retention windows (5 / 10 / 30y)
- Audit export designed for regulator workflows
- Prompt receivedp:0x71…ceops-lead@rectangle · 14:02:11
- Plan signed0x9c41…ab2eai-mode / verified blueprint · 14:02:18
- Human approvalsig:0x4b…9dcompliance.peppol · 14:05:44
- Deployedrev:1.4.0argocd · fr-par-secnumcloud · 14:09:56
- Archivedlta:0xaa…12LTA · NF Z42-013 · 10y · 14:10:02
Why the architecture
Faster to buy than to build.
Building a sovereign, AI-ready, verifiable PaaS in-house takes years of specialized engineering. LeCloud productizes the recurring architecture so regulated teams ship in weeks, not quarters.
Backed by Rectangle — CIR-accredited R&D in France.
Start on Outscale SecNumCloud. Extend to OVH or hybrid later.
Workloads target a sovereign substrate, not a vendor SKU — OVH, hybrid and on-prem extensions on the roadmap, without rewriting your applications.
A typed infrastructure model. Signed plans. No drift.
Blueprints carry machine-checkable invariants — residency, identity, network. Plans are signed; ArgoCD keeps runtime equal to signed state.
EU residency wired into the blueprint layer.
Designed to avoid accidental drift into non-EU control planes. Operators see residency at plan time, not after an incident.
Every step becomes probative evidence.
Plans, approvals, deploys and drift archived in the LTA — NF Z42-013 aligned, eIDAS-grade timestamps, exportable on request.
Platform features
A sovereign PaaS built for regulated teams.
Four capability layers. Each one productized from regulated workloads already delivered in production.
From prompt to typed configuration.
Move from a natural-language prompt to typed configurations from a single source of truth. Blueprints carry machine-readable policy invariants — residency, identity, network — compiled from intent, not hand-written drift.
Catch misconfigurations before they deploy.
Our proprietary formal engine validates plans at code time — residency checks, policy invariants, destructive-change detection. Every plan is signed, reviewable, and gated by human approval before any infrastructure changes.
Tenant isolation by default.
Self-hosted primitives per tenant: Git repositories, Object Storage buckets, Container Registry, and dedicated Keycloak realms. Data isolation is architectural, not a configuration option.
Zero provider lock-in.
Move workloads freely across Outscale SecNumCloud, OVHcloud, or hybrid environments. Workloads target a sovereign substrate, not a vendor SKU — your applications stay portable by design.
AI Mode · private beta
AI Mode turns intent into a reviewable infrastructure plan.
AI Mode is constrained to Rectangle's verified blueprint catalog. It proposes signed diffs against your sovereign estate; operators approve before anything applies. AI Mode is designed for 5-minute sovereign infrastructure with human-in-the-loop plan approval for total operational control.
- Designed for Mistral AI and open-weight European models
- Constrained to verified blueprints — no free-form code authoring
- Plans signed; humans approve before apply
- Prompts, plans and approvals captured as evidence
- plan hash
- 0x9c41…ab2e
- residency
- fr-par · SecNumCloud
- blueprint
- peppol-ap@1.4 (verified)
- retention
- 10y · NF Z42-013
- Residency check passed
- Verified blueprint resolved
- Plan diff reviewed
- Approver identity attached
Managed sovereign products
Productized layers on top of sovereign IaaS.
Managed Peppol
Peppol Access Point and SMP for PDP/PA-ready e-invoicing infrastructure — aligned with the French mandate.
LTA-as-a-Service
Long-term probative archiving as a managed sovereign service. NF Z42-013, eIDAS, configurable retention.
Sovereign Runtime
Kubernetes, registry, secrets, identity, object storage and GitOps on sovereign infrastructure.
Proof
Services taught us the playbook. The platform scales it.
LeCloud was productized from regulated workloads Rectangle already delivered — the recurring architecture across e-invoicing, sovereign archiving and regulated runtime.
- 2022
Sovereign cloud services
Rectangle ships regulated workloads on sovereign infrastructure for European clients.
- 2025
Recurring architecture productized
The verified plan loop, managed Peppol and LTA become LeCloud.
- 2026+
AI-native sovereign operations
AI Mode, managed compliance products and a category layer above sovereign IaaS.
Customer references shown anonymized pending approval.
PDP/PA-grade e-invoicing infrastructure delivered in 12 months.
Rectangle delivered Kubernetes, Tyk API gateway, Peppol Access Point integration, GitOps with ArgoCD and a proprietary formal verification discipline — on Outscale SecNumCloud infrastructure with human-in-the-loop operations.
100+ TB migrated off AWS to sovereign infrastructure.
Rectangle led the migration of sovereign archiving workloads from AWS to Outscale SecNumCloud infrastructure, and built the basis for LTA-as-a-Service — now distributed by Rectangle across regulated European markets.
Trust center
Compliance as a product surface.
Certifications, residency, sub-processors, drift status, evidence captured and export controls — visible in one product surface, not a static slide.
Category
The missing PaaS layer above sovereign IaaS.
Sovereign cloud initiatives validate the infrastructure layer. Regulated teams still need the product layer: deploys, identity, secrets, GitOps, audit evidence, AI operations and managed compliance workloads.
Choose your workload
Start with one regulated workload. Reuse the loop for the rest.
Pick a starting point. We'll come back within one business day with the right technical and commercial lead — preselected against your workload.
Peppol AP/SMP readiness review
Map your French e-invoicing perimeter to a PDP/PA-ready Peppol AP and SMP on sovereign infrastructure.
Book this reviewLTA retention and evidence review
Walk through retention horizons, eIDAS timestamps and probative export formats for your audit perimeter.
Book this reviewSovereign AI Mode beta
Constrain AI to verified blueprints and human-approved plans. Available for selected sovereign deployments.
Book this reviewHyperscaler migration assessment
Scope a workload exit from AWS, GCP or Azure onto Outscale SecNumCloud infrastructure — without residency drift.
Book this reviewPricing & packaging
Predictable enterprise packaging.
We specialize in predictable enterprise packaging tailored to compliance demands rather than noisy, usage-based public cloud pricing.
Developer Preview
For engineering teams evaluating sovereign primitives before production commitment.
- CLI access to sovereign control plane
- GitOps pipelines via ArgoCD
- Sandbox environments on Outscale SecNumCloud
- Community support via Discord
Managed Product Deployment
Optimized for regulated companies facing upcoming compliance waves and product delivery deadlines.
- Managed Peppol AP / SMP configuration
- LTA-as-a-Service with configurable retention
- SLA-backed operations and monitoring
- Compliance-aligned onboarding support
Enterprise Sovereign Engagement
Full infrastructure control plane tailored for cross-border banking, health, and state-backed workloads.
- Custom substrate migrations (AWS / GCP / Azure exit)
- Dedicated support SLAs with named engineers
- Multi-cloud architectures (Outscale + OVH + hybrid)
- Bespoke compliance reporting and evidence exports
All packages run on Outscale SecNumCloud infrastructure with ISO 27001 and HDS certification.
Custom quotes include residency mapping, SLA terms, and dedicated compliance reporting.
Deploy regulated workloads
on sovereign infrastructure.
Tell us about your workload — we'll come back within one business day with the right technical and commercial lead.