Sadu
Trust
Sign in

Trust & compliance · Saudi Arabia

Evidence, not promises.

Sadu is built for PDPL-era deployments: residency is enforced in the router core, every request leaves an audit row, and the controls below map to the frameworks your assessors ask about. This page is the technical evidence pack — forward it to your compliance team.

The invariant

A ksa-pinned key can never reach a non-sovereign provider

Enforcement lives in one place — the router core — and applies to every model, including our own Sadu orchestrator. A request with no sovereign route fails closed with 403 residency_violation. It is a property of the system, provable in our test suite and verifiable against production with one script.

403 { "code": "residency_violation" }

Control mapping

Where each framework concern is handled

Framework concernTechnical control
PDPL cross-border transfer restrictionsPer-key residency pin + router-core filter; requests without a sovereign route fail closed (403), never silently fall back
NCA ECC / CST cloud controls — data classificationResidency is a property of the API key, decided at issuance: classify a workload once, the router enforces it on every request
SAMA outsourcing & financial-sector rulesSovereign-only routing for pinned keys plus a complete per-request audit trail (provider, residency, tokens, cost, latency)
AuditabilityEvery request writes an immutable usage row; one-call CSV export covers NCA / SAMA / internal-audit reviews
Data minimization & training consentTrace prompt excerpts are capped; per-key training opt-out is enforced at the write path — opted-out prompts are never stored

Engineering documentation, not legal advice — map these controls to your own PDPL/NCA/SAMA/CST assessment with counsel.

Data flow

What stays in the Kingdom

1

Your application

Speaks the OpenAI wire format to a single endpoint: api.sadu.cloud.

2

Sadu — KSA region

Gateway, router, billing ledger, usage rows, Sadu traces and policies: all state lives on in-Kingdom infrastructure.

3

Model providers

ksa-pinned keys route only to in-Kingdom deployments. Global keys may use frontier providers abroad — your choice, per key.

The sovereign lane is enforced by the same router that serves global traffic — one codebase, one audit trail, two residency classes.

Live catalog

Residency status per model

Read live from the production catalog. ksa models never leave the Kingdom.

ModelProviderResidency
local-ksa/allam-2-7blocal-ksaksa
sadu/sadu-1-ksasaduksa
anthropic/claude-haiku-4-5anthropicglobal
anthropic/claude-opus-4-1anthropicglobal
anthropic/claude-sonnet-4-5anthropicglobal
deepseek/deepseek-chatdeepseekglobal
deepseek/deepseek-reasonerdeepseekglobal
google/gemini-2.5-flashgoogleglobal
google/gemini-2.5-progoogleglobal
groq/llama-3.3-70b-versatilegroqglobal
mistral/mistral-large-latestmistralglobal
mistral/mistral-small-latestmistralglobal
openai/gpt-4.1openaiglobal
openai/gpt-4.1-miniopenaiglobal
openai/gpt-4oopenaiglobal
openai/gpt-4o-miniopenaiglobal
openai/text-embedding-3-largeopenaiglobal
openai/text-embedding-3-smallopenaiglobal
sadu/sadu-1saduglobal
sadu/sadu-1-ultrasaduglobal
together/meta-llama/Llama-3.3-70B-Instruct-Turbotogetherglobal

Audit evidence

One call, assessor-ready CSV

Every request is metered into an immutable usage row. Export any date range as CSV with a single authenticated call — the exact columns your reviewers will see:

GET https://api.sadu.cloud/v1/usage/export?from=2026-06-01&to=2026-07-01
created_at, request_id, model, provider, residency, prompt_tokens, completion_tokens, cost_usd, latency_ms, status, error_code

Sadu provides engineering controls and documentation; it does not provide legal advice. Compliance mappings on this page describe how the system behaves, verified by automated tests.

Bring your compliance team.

Start with a global key in minutes, pin a ksa key when your workload demands it — the audit trail is on from the first request.

Get your API key