Post-quantum encrypted workspace · EU-built

Your organization's workspace. Cryptographically yours.

uOS gives your company an isolated, private platform — messaging, mail, file storage, documents, boards and calendar — where the most sensitive data is end-to-end encrypted with NIST-standardized post-quantum cryptography. Deployed in minutes, not months.

Request early access Review the security architecture
Currently in early access. We onboard organizations individually.
From zero to private workspace
1

Create your platform

Name it, brand it with your colors and logo.

~2 min
2

Choose your apps

Enable exactly the tools your teams need.

~1 min
3

Invite your people in bulk

Every member joins through a verified invitation — no anonymous accounts.

~5 min
4

Work

Chat, mail, files, docs, boards, calendar — in one tab, on any device.

day one
Why organizations choose uOS

Three properties you won't find together anywhere else.

ISOLATION

A platform, not a tenant

Your uOS platform is fully separated from every other — your members, your data, your branding, your app selection, your admin roles. Employees can belong to multiple platforms and switch context instantly, but the platforms themselves never mix.

ACCOUNTABILITY

Invitation-based membership

There is no open registration. Every account is created through an invitation and remains tied to its inviter. For an organization, this means a workforce of verified identities — no anonymous accounts, no bot registrations, and a clear chain of accountability if something goes wrong.

CRYPTOGRAPHY

Post-quantum by default

Internal messaging, mail, file storage, notes and tasks are end-to-end encrypted with NIST-standardized post-quantum algorithms. Data intercepted today cannot be "stored now, decrypted later" — the threat model regulators are now asking about.

Security architecture

Claims you can hand to your security team.

Every statement below is verifiable in the system's behavior and data model. We are deliberately precise about what is end-to-end encrypted and what is not.

Asymmetric cryptography
100% post-quantum. Signatures: ML-DSA-65 (FIPS 204). Key encapsulation: ML-KEM-768 (FIPS 203). There is no RSA and no elliptic-curve cryptography anywhere in the system.
Symmetric encryption
XChaCha20-Poly1305 authenticated encryption; key derivation via HKDF-SHA256.
End-to-end encrypted
Chat messages and attachments, internal mail, file contents and file names, notes, and tasks. Content is encrypted per recipient in the client; the server stores ciphertext only and enforces that no message is accepted without an encrypted copy for every conversation member.
Server-side data
Collaborative artifacts — documents, spreadsheets, boards, calendar — are currently processed server-side to enable collaboration, with encryption of these data types on our active roadmap. We will state plainly which is which at any time.
Credentials
There is no password database. Keys are derived in the user's browser from secrets that never leave the device. The server stores public keys only. Account recovery uses a 3-of-5 secret-sharing scheme controlled entirely by the user.
Sessions & tracking
Zero cookies. Browser storage is actively wiped on every page load; session state exists in memory only. No advertising trackers, no analytics resale, no data sold — ever.
Jurisdiction
Built and operated in the European Union. GDPR compliant by architecture: the operator cannot read end-to-end encrypted content, which minimizes the personal data actually processable.

We publish our threat model and security roadmap and answer security questionnaires directly. If your team finds an overclaim on this page, we want to hear about it.

AI on your terms

Every app has an AI assistant. You decide which AI.

AI assistance is built into the uOS workspace — drafting, summarizing, translating across 26 languages. But AI is also the one place where data must be readable to be processed, so uOS makes the provider your choice, at platform level.

Connect your in-house model running on your own infrastructure, a private cloud deployment, or a commercial API on your own key. Your employees' prompts go where your policy says they go — never through a provider you didn't choose.

AI use is always explicit and opt-in. Stored content remains end-to-end encrypted regardless.

Platform settings → AI provider
Your in-house modelon-premises endpoint · your infrastructure, your logs
Private cloud deploymentdedicated instance, your region
Commercial API, your keyOpenAI-compatible or Anthropic
Practicalities

Built for fast adoption, not migration projects.

Nothing to install

uOS runs in any modern browser on desktop and mobile. No client rollout, no MDM packaging, no update management. An optional native agent adds desktop notifications where wanted.

Familiar from minute one

Windows, folders, chat threads, kanban boards — every app follows conventions your employees already know. Training effort is close to zero.

Extensible without developers

Studio builds internal tools from a plain-language description — forms, trackers, small workflow apps — deployable to your platform and shareable through the marketplace.

GDPR compliant Zero cookies NIST FIPS 203 / 204 cryptography No password database Data never sold Built in the EU

Early access for organizations

uOS is in active development and we onboard organizations individually — which means direct access to the people building the system, and real influence on what gets built next. Free during the early-access phase; transparent pricing for commercial platforms afterwards.

We typically respond within two business days.