Government teams need AI that stays in-jurisdiction, can run on isolated infrastructure, and leaves a record for oversight. NemoRouter offers residency pinning, dedicated and VPC tenancy, and procurement-ready paperwork.
What a public-sector deployment gets
US + EU GA, more on request
Managed · dedicated · VPC
Every administrative action
Published and linkable
Where data lives, what infrastructure it runs on, the record it leaves, and the paperwork procurement can review. NemoRouter is precise about what is generally available and what is a scoped engagement.
United States is the default footprint. EU residency is generally available on Enterprise; the UK, Canada, Australia, Singapore, and India are available on request — so data stays inside the jurisdiction your mandate requires.
When shared infrastructure is not acceptable, run a single-tenant deployment — your own database, your own routing engine — or have NemoRouter deployed inside your own cloud account so traffic never leaves your perimeter.
Every key, budget, guardrail, and team change is recorded append-only with the actor, timestamp, source IP, and a payload diff — the record an oversight or FOIA review expects.
No chasing documents through a sales cycle. The Data Processing Addendum and SLA are published and linkable; the MSA and a HIPAA BAA are issued on request through the Enterprise team.
A residency mandate is not a preference — it is a requirement. NemoRouter lets you fix where customer data is processed, and never moves it across regions without an explicit migration request.
Need a region not listed? Ask sales — most major cloud regions can be pinned on a dedicated deployment.
Most teams run on the managed multi-tenant gateway. When that is not acceptable, dedicated and VPC tenancy on Enterprise put the deployment under your isolation and your perimeter.
Managed → dedicated → VPC
Managed multi-tenant already isolates every tenant with Postgres Row-Level Security. Dedicated tenancy adds an isolated database and routing engine in a separate project. VPC / BYO-cloud deployment runs NemoRouter inside your own cloud account so prompts and provider keys never leave your network boundary.
Tenancy options
Four common workloads — each one routed, budgeted, and recorded in the audit trail.
Answer routine citizen questions behind guardrails that catch prompt injection and redact any personal data a constituent submits.
Classify, summarize, and route documents at agency scale, with an audit trail recording every administrative action.
Staff draft and summarize with versioned prompt templates so the output format is consistent and reviewable across the agency.
Analysts query and summarize program data on budgeted keys, with cost attributable to the program that incurred it.
Public procurement does not reward vague claims. Here is the precise status.
Yes. United States is the default footprint. EU residency is generally available on Enterprise, and the UK, Canada, Australia, Singapore, and India are available on request. Customer data is replicated within a single region and is never moved without an explicit migration request. For a region not listed, a dedicated deployment can usually be pinned to most major cloud regions.
On Enterprise, yes. Dedicated tenancy gives you a single-tenant NemoRouter deployment with an isolated database and routing engine. VPC / BYO-cloud deployment puts NemoRouter inside your own GCP, AWS, or Azure account so prompts and keys never leave your network perimeter. Both are scoped engagement-by-engagement with your cloud and security teams — we are candid about what is generally available versus a scoped engagement.
We are direct about this: NemoRouter does not currently hold FedRAMP authorization or other government-specific certifications. NemoRouter operates SOC 2-aligned controls today, with a formal SOC 2 Type II audit in progress (target Q3 2026), and the infrastructure substrate (Google Cloud Run, Supabase) is independently SOC 2 Type II and ISO 27001 certified. If your procurement requires a specific authorization, tell us early so we can scope what is and is not possible — we will not imply a certification we do not hold.
The Data Processing Addendum and Service Level Agreement are published and linkable today. The Master Service Agreement and a HIPAA BAA are issued on request through the Enterprise team, and redlines are welcome. A completed vendor security questionnaire and a controls walkthrough are available from security@nemorouter.ai.
Public sector
We will walk through tenancy options, the residency footprint, the audit trail, and the DPA — and be candid about any authorization we do not yet hold.
9 residency regions · dedicated + VPC tenancy on Enterprise · DPA + SLA published · SOC 2 Type II audit in progress