Sino-European R&D

We build and harden the cybersecurity and AI systems you cannot buy off the shelf.

Custom applied research with a documented evidence trail behind every recommendation. Researchers in China and the EU, operating as one team.

How we work → Case studies →
Audit Trail
01

How we work

Provenance-first delivery. Every claim resolves to a source row with tier and confidence rating. See the methodology that shapes every engagement.

Methodology → 02

What we've delivered

Anonymised case studies across cybersecurity and AI. Mechanism-led, sector-tagged, with the evidence structure visible.

Case studies → 03

Working with us

From structured intake to NDA-first engagement. How a collaboration begins and what the delivery shape looks like.

Get in touch →

Methodology

Provenance-first delivery

Four practices that shape every engagement. Not a tagline — a workflow embedded in our deliverables.

01

Workstream decomposition

Every engagement starts with a decomposed workstream plan. Scope is shaped at intake, not discovered mid-project.

02

Source-tier evidence (A–E)

Claims resolve to classified sources: A primary, B registry, C academic, D press, E user-generated. No unattributed assertions.

03

Confidence rubric

Every finding carries a confidence rating — high, medium, low, or unverified. Uncertainty is documented, not hidden.

04

Open-questions register

What we couldn't verify is flagged, not papered over. Clients decide what to escalate; we document what remains unresolved.

Selected work

Case studies

Insight Provenance
AI Regulatory

Agentic LLM pipeline for regulatory due-diligence

In plain terms: a network of AI agents that produces structured supplier risk reports — applying our own evidence framework, in code.

Multi-agent orchestration with eval-first delivery and a provenance gate that rejects unsourced claims.
AI Industrial

Provenance-aware RAG for legacy engineering documentation

In plain terms: an answer system for 38,000 PDFs of technical drawings — every answer points back to the exact document and page.

Retrieval architecture with citation verification; 1.4% hallucination rate vs. 11–18% for the baseline implementations.
Cybersecurity Industrial

Three-zone authentication for legacy industrial control systems

In plain terms: hardware identity for the computers that run factories and power plants — without ripping them out.

Hardware root of trust retrofit for OT/ICS environments with IEC 62443 compliance pathway.

Sectors

Industrial · Biosecurity · Civic · Communications · Energy

Regulatory fluency

NIS2 · CRA · EU AI Act · IEC 62443 · EU DPP · NIST 800-155/193

European cybersecurity, AI, and supply-chain regulations we work fluently within. What these are →

Presence

China · European Union