EU-sovereign · GDPR Article 9

The compliance backend for neural data.

Sovereign, default-unreadable storage for EEG and other neural recordings — designed around GDPR Article 9. Bring your own acquisition tools; Cephios is the compliant layer underneath.

Become a design partner → How it fits

The problem

Neural data is special-category data under GDPR Article 9. Today, every lab improvises its own storage, consent records and key management. Cephios is building the standardized, EU-sovereign custody layer — so you don't have to.

What Cephios is

The layer

Between your tools and your analysis

Sits between acquisition (BrainFlow, LSL, ActiView) and your analysis software. Cephios does the custody, not the device or the maths.

Sovereign

EU-sovereign by construction

Hosted in the EU on European infrastructure. No US sub-processors anywhere on the path.

Default-unreadable

Ciphertext, not plaintext

A zero-knowledge design: Cephios stores encrypted data it cannot read. Built to produce the evidence a DPO or ethics committee asks for.

Built for academic EEG and neural-data labs, research-data & privacy teams, and DPOs. Neurotech developers welcome too.

Design partners

We're building Cephios with a small number of EU research labs.

If your lab works with EEG or neural data and wrestles with Article 9 storage, we'd like to talk. No commitment — a conversation.

Name

Work email

Institution / lab

Role

Message — optional

Your details stay in the EU. No US processors.

Thanks — message received.

We'll be in touch from a Cephios address. Your details are stored in the EU only.