What Breaks When You Build AI Systems Under Sovereignty Constraints

Transcript

1. What Breaks When You Build AI Systems Under Sovereignty Constraints

   Bilge Yücel, Sr. DevRel Engineer @ deepset

2. Who is deepset? Company Solving Custom AI challenges since 2018.

   HQ in Berlin and NYC. Backed by: Leading open source framework & commercial platforms for custom enterprise-grade AI Products Used by 70 Thought leaders

3. Definition Sovereign AI is the ability of an organization to

   design, deploy, and operate AI systems on its own terms.

4. Definition Sovereign AI is the ability of an organization to

   design, deploy, and operate AI systems on its own terms. Having explicit control over data flow, model choice, infrastructure, observability and operations.

5. Four Pillars of Sovereign AI Data Sovereignty where do you

   store it, where does it get processed? Model Sovereignty who controls the running models, origin of the training data? Infrastructure Sovereignty where does compute happen? Operational Sovereignty Is it traceable, who can update it, who owns the incident response? Sovereign AI

6. Data Sovereignty • Data stored and processed within trusted jurisdictions

   to meet compliance requirements • Access permissions are respected Governing how data is accessed and used in AI systems

7. Infrastructure Sovereignty Where does compute happen? Max control Max convenience

   Air-gapped On-prem, no egress EU AI Act safe Private cloud VPC, dedicated GDPR safe Sovereign cloud EU-operated infra Depends on provider Hybrid Local + gated APIs Requires data gating SaaS Full vendor CLOUD Act risk

8. Model Sovereignty Who controls the model and origin of the

   training data? • Freedom to choose and switch models • Swapability without architectural changes • Training data origin

9. Operational Sovereignty Monitoring, evaluating and managing AI systems over time

   • Monitor how AI systems behave in production, including model outputs. • In high-stake environments, human-in-the-loop is incorporated. • Managing versioning, and updates to models and application layer in a controlled, auditable way.

10. Sovereignty is a spectrum Not everyone needs full sovereignty in

    all pillars Air gapped finance, healthcare Public Sector Enterprise Startup Know your level of control

11. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems Maintenance - Cost - Performance

12. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model → Maintenance - Cost - Performance

13. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model Translate API logic to the new model architecture → Maintenance - Cost - Performance

14. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction Translate API logic to the new model architecture → Maintenance - Cost - Performance

15. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction Translate API logic to the new model architecture Managing multiple databases & instances → → Maintenance - Cost - Performance

16. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction You replace managed infra with on-prem Translate API logic to the new model architecture Managing multiple databases & instances → → Maintenance - Cost - Performance

17. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction You replace managed infra with on-prem Translate API logic to the new model architecture Managing multiple databases & instances Vendor lock-in, hardware limitations → → → Maintenance - Cost - Performance

18. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction You replace managed infra with on-prem You incorporate observability & tracing Translate API logic to the new model architecture Managing multiple databases & instances Vendor lock-in, hardware limitations → → → Maintenance - Cost - Performance

19. Engineering Challenges of Sovereignty What you do and what breaks

    in existing systems You replace the frontier API with a self-hosted model You move private data into the required jurisdiction You replace managed infra with on-prem You incorporate observability & tracing Translate API logic to the new model architecture Managing multiple databases & instances Vendor lock-in, hardware limitations Black-box, version control → → → → Maintenance - Cost - Performance

20. Why Haystack A good orchestration solves some of these problems

    Serializable to YAML Truly open & extensible Explicit data flow Consistent interface

21. Sovereign Architecture

22. Sovereign Architecture

23. Guardrails Tutorial: AI Guardrails: Content Moderation and Safety with Open

    Language Models

24. Tools

25. Agent

26. Bring it all together

27. Sovereignty Checklist Can you swap models without changing the application

    logic? Do you have reproducible run logs, stored in a compliant way? Can your team respond to an incident without calling a vendor?

28. Thank you www.deepset.ai www.haystack.deepset.ai Get the presentation & Ask questions

    in/bilge-yucel @bilgeyucl