What is VoltageGPU Confidential Chat?

A ChatGPT-style interface running inside Intel TDX hardware enclaves. Prompts and responses are encrypted in CPU memory at runtime and never leave the sealed Trust Domain. VoltageGPU cannot read user data, cannot log it, cannot train on it.

Do I need an account to try it?

No. Anonymous visitors get 3 free messages on Qwen3-32B-TEE without any signup, no credit card required. After the free trial, signup unlocks 50 free messages per month, Plus $20/mo unlocks 2000 messages with Qwen3-235B 262K context.

How is it different from ChatGPT Plus?

Same $20/mo price point but sealed in Intel TDX hardware. OpenAI trains on user data by default. VoltageGPU Plus cannot technically read user data — memory is encrypted with CPU-fused keys and even the hypervisor is outside the trust boundary. EU company (France, SIREN 943 808 824), native GDPR Article 28 DPA available.

Which TEE models are available?

3 models sealed in Intel TDX: Qwen3-32B-TEE (40K context, fast), Qwen3-235B-A22B-Instruct-2507-TEE (262K context, flagship, Plus/Pro), DeepSeek-R1-0528-TEE (163K context, reasoning model, Enterprise).

Can I use it for regulated work (legal, medical, finance)?

Yes. Beyond the generic chat, 8 specialized agents are available: Contract Analyst, Financial Analyst, Medical Records, Compliance Officer, Due Diligence, Cybersecurity, HR, Tax. GDPR Article 28, HIPAA, DORA, NIS2 ready. DPA available on request.

Yes — api.voltagegpu.com/v1 is OpenAI-compatible, pay-per-token starting at $0.15/M input tokens on Qwen3-32B-TEE. Drop-in replacement for the OpenAI SDK (change base_url).

NIS2 AI Compliance TDX Attestation Live

Transposition deadline passed · enforcement live across Member States

NIS2-compliant AI for critical infrastructure.

Supply chain cybersecurity by hardware. Incident timelines by attestation. EU jurisdiction with direct cooperation channels to ANSSI and national CSIRTs.

Who NIS2 covers

Essential and important entities.

The transposition deadline (17 October 2024) is passed. Most Member States have published national implementing legislation through 2025 and are enforcing in 2026. NIS2 broadens scope dramatically compared to NIS1: now most mid-market companies in critical sectors are in scope, plus their cybersecurity supply chain — which includes AI inference vendors.

Essential entities

Energy (electricity, gas, oil, hydrogen)
Transport (air, rail, water, road)
Banking and financial market infrastructures
Health (hospitals, manufacturers of medical devices)
Drinking water and wastewater
Digital infrastructure (DNS, TLD, cloud, data centres)
ICT service management (B2B)
Public administration
Space

Important entities

Postal and courier services
Waste management
Chemicals manufacturing and distribution
Food production, processing, distribution
Manufacturing (medical devices, electronics, machinery, motor vehicles)
Digital providers (online marketplaces, search engines, social platforms)
Research organisations

Article 21 — supply chain security

AI inference is part of your cybersecurity supply chain.

Article 21(2)(d) requires essential and important entities to manage supply chain security including security-related aspects of relationships with direct suppliers and service providers. ENISA guidance from 2025 confirms that AI/ML services qualify when they support critical workflows. The entity must assess vendor cybersecurity practices, contractually require security measures, and verify them on an ongoing basis. Hardware-sealed inference is the highest-grade evidence available today.

Verifiable confidentiality

TDX hardware sealing means an AI vendor breach cannot leak prompts or outputs in plaintext. Provider-blind by construction.

Verifiable integrity

ECDSA attestation per request. Tampering with model version, enclave or compute environment shows up as a quote mismatch.

European cybersecurity certification alignment

Aligned with EUCC and EUCS scheme directions. Intel TDX has a public TCB recovery process and signed measurements.

EU jurisdiction

VOLTAGE EI is based in France. Cooperation with ANSSI, BSI, AgID and other national CSIRTs is direct, no transatlantic detour.

Article 23 — incident reporting

24h, 72h, one month — evidence ready in minutes.

NIS2 incident reporting timelines are tight: 24h early warning, 72h notification, one month final report. When the incident touches an AI workflow, your responders need forensic evidence about which prompt ran, on which model, and inside which enclave — fast. Per-request attestation gives them that data as a signed JSON-LD bundle, not a ticket back-and-forth with a vendor.

24h early warning
Signed quote stream filterable by tenant, model, time window. Initial classification material in minutes.
72h notification
Full attestation log export, severity assessment, indication of cross-border impact and IoCs.
1 month final report
Tamper-evident chain of custody, root cause analysis backed by signed measurements, mitigations applied.

NIS2 FAQ

Questions critical infrastructure teams ask.

Who is in scope of NIS2?

Essential entities (energy, transport, banking, financial market infrastructures, health, drinking water, wastewater, digital infrastructure, ICT service management, public administration, space) and important entities (postal, waste management, chemicals, food production, manufacturing, digital providers, research). Member States had to transpose by 17 October 2024 and many enforcement timelines are now active in 2026.

Is an AI vendor part of my supply chain under Article 21?

Yes, when the AI service supports a workflow that touches the cybersecurity posture of an essential or important entity. ENISA guidance from 2025 confirms that AI/ML services qualify. You must assess vendor cybersecurity practices, contractually require measures, and verify them on an ongoing basis.

How does VoltageGPU support NIS2 incident reporting?

Per-request ECDSA attestation gives your incident response team a tamper-evident timeline of every AI invocation. Suspicious activity in an inference path can be triangulated against signed quotes. EU jurisdiction (VOLTAGE EI, France) means cooperation channels with ANSSI and other national CSIRTs are direct.

What about management body accountability under Article 20?

NIS2 makes management bodies personally responsible for cybersecurity risk-management measures. We provide attestation evidence and contractual provisions that map directly to Article 21 measures, so your CISO and management body can demonstrate due diligence to the national authority.

What about the Cyber Resilience Act?

The CRA covers products with digital elements. AI services delivered as a service are not in CRA scope, but customers integrating AI into a CRA-regulated product benefit from hardware sealing as evidence of cybersecurity by design.

Related compliance pages

EU AI Act compliance pillar

Article 12, 14, 15 and 32 obligations enforceable from 2 August 2026.

GDPR-compliant AI agents

Article 28 native DPA, Article 32 confidentiality.

DORA AI compliance

ICT third-party risk for banks, insurers and investment firms.

Article 12 AI Act logging

Sample attestation log JSON, retention and API access.

Sovereign agentic AI

Vertical agents for legal, finance, regulated professionals.

Live attestation evidence