MICKAI
Article · 25 June 2026

The Financial Data No Cloud Can Hold

Why regulated financial institutions buy a sovereign operating system they own outright rather than rent intelligence they can never audit.

The Financial Data No Cloud Can Hold
Author
Micky Irons
Published
25 June 2026
Follow Micky Irons
LinkedInX
financial servicesFCA Consumer DutySR 11-7 model riskDORAsovereign AI

The day finance said no

In the spring of 2023, the largest names in global finance reached the same conclusion within weeks of each other. The largest global banks restricted staff use of public AI tools. Insurers, wealth managers and asset managers followed close behind. These were not nervous start-ups. They were institutions with the deepest compliance functions on earth, and each looked at a cloud large language model and decided that the risk of typing client data, deal terms or trading logic into a third-party system was not one they could carry.

A carved white marble statue of Themis, goddess of law, holding perfectly level balanced scales, satin gold #D4AF37 highlights along the scale beam and her robes, aged bronze base, pure void black #05
A carved white marble statue of Themis, goddess of law, holding perfectly level balanced scales, satin gold #D4AF37 highlights alo

The reasons were not abstract. A regulated financial firm operates inside the United Kingdom Financial Conduct Authority (FCA) Senior Management Arrangements, Systems and Controls regime, known as FCA SYSC, which demands demonstrable control over every system touching regulated activity. It operates under the Consumer Duty, introduced in 2023, which requires that every consequential customer decision be auditable and explainable after the fact. In the United States the same institution answers to the Federal Reserve model-risk regime, Supervisory Letter SR 11-7, which treats any model influencing a financial decision as something that must be validated, documented and governed across its whole lifecycle. Across the European footprint it now faces the Digital Operational Resilience Act (DORA), which holds the firm accountable for the resilience and traceability of its information and communications technology, including its third-party providers. Layered on top are the Sarbanes-Oxley (SOX) controls regime over financial reporting and the Payment Card Industry Data Security Standard (PCI-DSS) over cardholder data.

A cloud chatbot satisfies none of these by architecture. It is not that the vendor is careless. It is that the firm cannot see inside, cannot hold the keys and cannot produce an artefact a supervisor will accept. So the sector did the only thing the rulebooks allowed. It banned the tool and waited for something it could actually own.

If you are a multibillion-dollar company running on Anthropic or OpenAI, and your direct competitor of comparable scale sits on the same vendor stack, what stops them paying a vendor insider to leak your data, your tactics, your leads, your sales strategy? Inside a third-party cloud, there is no safeguard you can verify from the outside. The only answer is a sovereign system where you hold the keys, with no third-party cloud data path.

Micky Irons, founder and CEO, Mickai LTD
A single sealed bronze tablet resting on a marble plinth, a circular gold wax seal pressed at its centre catching the light, aged bronze surface with fine engraved grooves, pure void black #050505 bac
A single sealed bronze tablet resting on a marble plinth, a circular gold wax seal pressed at its centre catching the light, aged

What a regulated firm actually needs to buy

The Mickai Sovereign Intelligence Operating System (SIOS) is built for exactly the gap those bans opened. Fifty specialised artificial intelligence brains run fully offline on hardware the firm owns. The data never leaves the building. Every action the system takes is sealed under a post-quantum signature called the Open Audit Record (OAR), which anyone can verify offline, long after the event, without contacting Mickai or any cloud. The operator holds its own keys. There is no third-party cloud data path to compromise, subpoena or leak.

That single architectural choice answers the regimes at once. SYSC wants demonstrable control, and control means the keys and the deployment sit inside the firm. The Consumer Duty wants every consequential decision explainable, and the OAR is a portable, tamper-evident record of what the system did and why. SR 11-7 wants a model governed across its lifecycle, and a sealed local deployment gives the model-risk team a fixed, inspectable artefact rather than a moving cloud endpoint that changes without notice. DORA wants operational resilience and traceability extending to third parties, and the cleanest way to satisfy a third-party concentration rule is to remove the third-party data path entirely. SOX and PCI-DSS want a defined control perimeter, and a deployment the firm owns keeps that perimeter from leaking into a shared tenant.

This is the financial-services beachhead within a wider thesis. Mickai serves two buyer segments with one architecture. The first segment was forced off cloud artificial intelligence and is already in motion. A major electronics manufacturer banned a public AI chatbot after a source-code leak. The largest global banks and several National Health Service (NHS) Trusts restricted public AI tools through 2023. A European data-protection regulator fined a major AI provider fifteen million euros, and a national privacy regulator in Asia issued its own penalty. That is rescue revenue, spend that exists today and is actively looking for a compliant home. The second segment never started. Wealth managers regulated by the FCA, litigation teams at the largest law firms, Ministry of Defence cleared programmes, and federal workloads at FedRAMP and Impact Level five and above never typed a word into a public model. That is net-new, unclaimed spend. A regulated financial institution usually sits in both segments at once. It has departments that were forced off, and it has departments that never dared to begin.

A grand classical marble colonnade receding into darkness, fluted white-to-grey columns with gilded capitals touched in satin gold #D4AF37, polished marble floor, aged bronze threshold, pure void blac
A grand classical marble colonnade receding into darkness, fluted white-to-grey columns with gilded capitals touched in satin gold

The financial-services pack

A regulated firm does not buy a chatbot. It buys a working department. Mickai delivers eighteen enterprise studios on top of thirty-eight base studios, and the financial-services vertical pack assembles the five that matter most to a regulated balance sheet.

**Plutus** is the finance, accounting and financial planning and analysis engine. It drafts the management accounts, runs the reforecast, and assembles the variance commentary. Because it runs inside the firm, the consolidation logic and the forward numbers never touch an external system, which keeps the controllership function inside the Sarbanes-Oxley (SOX) control perimeter where it belongs.

**Nemesis** is fraud and anti-money-laundering monitoring. It watches transaction flows, surfaces the suspicious pattern, and assembles the case file. Anti-money-laundering work is where a financial firm's data is most sensitive and most regulated, the precise material no institution will route through a shared multi-tenant cloud. Every alert Nemesis raises carries its own OAR, so the rationale behind a flag is sealed at the moment it is made rather than reconstructed under examination later.

**Nomos** is governance, risk and compliance, the studio that produces regulator reporting and maps activity to the rulebook. It is where SYSC, the Consumer Duty, DORA and the relevant Prudential Regulation Authority (PRA) expectations are operationalised into evidence a supervisor will accept. When a thematic review lands, Nomos turns the request into a structured, signed submission rather than a fortnight of manual collation.

**Aletheia** is audit and continuous controls assurance. Rather than a once-a-year scramble, it keeps controls under continuous test and produces a running, signed trail. For a firm facing SR 11-7 model governance and SOX controls testing in the same year, continuous assurance is the difference between an audit that confirms and an audit that excavates.

**Tyche** is underwriting, rating and actuarial work. Inside an insurer or a bancassurance arm it carries the analytical load that Solvency II expects to be modelled, documented and defensible. Paired with Aletheia, the actuarial judgement and the evidence of its control arrive together.

Five studios, one sealed deployment, every output signed. That is not a feature list. It is a regulated operating floor for the parts of a financial institution that were starved of modern artificial intelligence precisely because the cloud could not be trusted with them.

A gilded marble statue of Argus the all-seeing watchman, head turned in vigilance, surface rendered in satin gold #D4AF37 over white marble, aged bronze plinth, pure void black #050505 background, sin
A gilded marble statue of Argus the all-seeing watchman, head turned in vigilance, surface rendered in satin gold #D4AF37 over whi

Why the model stops drifting

Compliance is not the only reason the sector pulled back. There was also the matter of reliability. A model that confidently invents a figure, a clause or a counterparty is a hazard in any firm, and a liability in a regulated one.

When companies use the Mickai Sovereign Intelligence Operating System, the context-compression problem that plagues cloud LLMs is removed at the architectural level. Cloud systems hallucinate and drift off topic because shared multi-tenant storage forces aggressive context compression, summary-pass swaps, and lossy recall. Inside Mickai, the operator owns the memory. They expand it inside their own data centre or workstation, scale it on Poseidon rack-scale or local NVMe, and never compete with another tenant for context budget. The result is a measurable reduction in drift and hallucination.

Micky Irons, founder and CEO, Mickai LTD

For a regulated firm, lower drift is not a comfort. It is a control. SR 11-7 holds the firm responsible for model performance, and a system whose context budget is not silently traded away against ten thousand other tenants is a system whose behaviour the model-risk team can actually characterise and sign off. A reduction in drift that the firm can observe inside its own perimeter is a reduction it can document, and documentation is the currency a model-risk function spends with its regulator.

A single ornate gold key lying across a closed marble vault door, the key in satin gold #D4AF37, the vault carved in white-to-grey marble with aged bronze hinges, pure void black #050505 background, l
A single ornate gold key lying across a closed marble vault door, the key in satin gold #D4AF37, the vault carved in white-to-grey

The economics a treasurer will recognise

The commercial model is built to be understood by the same people who killed the cloud pilot. Mickai is a capital purchase, not a subscription. Access for a fee, deployed free. The firm buys the SIOS, runs it on hardware it already owns or procures, and holds its own keys. Above roughly fifty million tokens a month on owned hardware, the system runs seventy to ninety per cent cheaper than cloud application programming interface (API) pricing. Break-even commonly lands inside eighteen months, and at the volumes a global financial institution generates, as fast as four to eight weeks.

The ladder runs from a Solo deployment at four and a half to six and a half thousand pounds, through Team, Department and Enterprise tiers, up to a Sovereign installation at two to twenty-five million pounds and beyond for a full institution. A large financial firm does not start at the top. It starts with one studio in one regulated department, watches the OAR satisfy an internal auditor, and expands along the ladder as the evidence accumulates. At group scale, Mickai projects year-five global commercial revenue near two and a half billion pounds and a combined figure near three and a half billion pounds at roughly fifty-nine per cent earnings before interest, taxes, depreciation and amortisation (EBITDA).

The market behind that ladder is large and verifiable. Enterprise artificial intelligence software is heading toward a total addressable market of about one hundred and twenty-two point six billion pounds by 2030, growing at thirty-seven point six per cent a year. The slice eligible for regulated, private deployment, the serviceable addressable market, is about forty billion pounds. The governed, auditable-artificial-intelligence served market is about four point six billion pounds and growing about forty-five per cent a year. A Cisco study found that twenty-seven per cent of organisations banned generative artificial intelligence outright, sixty-three per cent restrict what data can be entered, and sixty-one per cent restrict which tools may be used. Those restricted firms are not lost demand. They are the addressable market, and regulated finance sits at its centre.

A carved marble statue of Poseidon standing firm with one hand resting on a heavy aged-bronze anchor, his trident and the anchor chain edged in satin gold #D4AF37, white marble torso and drapery, pure
A carved marble statue of Poseidon standing firm with one hand resting on a heavy aged-bronze anchor, his trident and the anchor c

Where the perimeter is drawn

It would be easy to read this as a campaign against the frontier clouds. It is not. For open, non-regulated work, the leading cloud AI providers remain the right tools, and Mickai treats them as partners on that ground. The point is narrower and sharper. There is a regulated perimeter that a shared cloud cannot cross by architecture, no matter how good its policies are, because the firm on the outside cannot verify a safeguard it cannot see.

A regulated financial institution lives almost entirely inside that perimeter. Its trading strategy, its client book, its suspicious-activity reports, its underwriting models, its model documentation and its consumer-outcome evidence are exactly the assets that must never leave a system the firm controls. When the FCA asks how a decision was reached, the answer cannot be a vendor's assurance. It has to be an artefact the firm can produce on demand and a supervisor can verify independently. The Open Audit Record is that artefact, sealed at the moment of action and verifiable offline forever after. The intellectual property beneath it is substantial, with 101 filed United Kingdom patent applications and roughly 2,234 claims owned by Mickai LTD, named inventor Micky Irons, but the proof a regulated firm cares about is the one it can hand to a regulator, not the count on a register.

The European Union Artificial Intelligence Act (EU AI Act) sharpens the deadline. Its high-risk obligations apply from 2 December 2027, with fines up to thirty-five million euros or seven per cent of global turnover, and much of what a financial firm does with artificial intelligence in credit, fraud, underwriting and customer outcomes falls squarely into the high-risk band. Every institution that banned the cloud in 2023 now has a date on the calendar by which it must field something governed, explainable and auditable in its place.

The door the bans left open

The sector already made the hard decision. It walked away from the most capable tools of the moment because the rulebooks left it no choice. What it was waiting for was a system it could own, audit and defend, one where the keys are its own and every action arrives pre-sealed for the regulator who will eventually ask. A cloud vendor can promise diligence. It cannot hand a supervisor a tamper-evident record the firm itself can verify without trusting the vendor at all. That gap is not a matter of policy or goodwill. It is a property of the architecture, and no amount of contractual assurance closes it.

That is the door the bans left open, and it is the one the Mickai SIOS walks through. The financial-services pack, **Plutus**, **Nemesis**, **Nomos**, **Aletheia** and **Tyche**, gives a regulated financial institution a working floor of intelligence that satisfies SYSC, the Consumer Duty, SR 11-7, DORA, SOX, PCI-DSS, Solvency II and the EU AI Act at the level of architecture rather than promise. The institution holds its own keys, owns its own memory, and produces evidence on demand. For the first time since 2023, the most heavily governed firms on earth can put modern artificial intelligence to work on the data they were forced to protect, and prove to their regulator exactly what it did.

ShareLinkedInXHacker NewsRedditMastodonBlueskyEmail
Subscribe
Get every new Mickai article by email.

Long-form essays on sovereign AI from Micky Irons. One email per article. No tracking, no marketing, no third parties. Every email includes a one-click unsubscribe link.

Prefer RSS? Subscribe at /articles/feed.xml.

Originally published at https://mickai.co.uk/articles/the-financial-data-no-cloud-can-hold. If you operate in a regulated sector or want sovereign AI on your own hardware, the audit form on mickai.co.uk is the entry point.
More articles
23 Jun 2026
Hold Your Own Keys
When you and your competitors all run your crown jewels through the same frontier model, the only thing standing between your secrets and theirs is a boundary you do not control. The frontier providers are excellent and their security is real. The exposure is structural, not an accusation. The answer is custody: hold your own keys.
23 Jun 2026
The Third Answer to the AI Water Crisis
A viral argument has split the internet into two camps: switch the AI data centres off to save the water, or starve the taps to feed a coming superintelligence. Both are wrong, because both assume intelligence has to live inside one giant water-cooled megacentre. It does not. The third answer is sovereign, distributed intelligence on hardware you own, sited where it is used. You keep the water and the intelligence.
22 Jun 2026
Keep the Logs. Now Prove They Were Not Edited.
Everyone keeps the logs. Almost no one can prove the logs were never edited. That gap is the quiet weakness at the centre of the artificial intelligence boom, and it is about to become the whole conversation. Mickai's answer is three layers of verifiable proof: seal a signed record, anchor its hash to Bitcoin, run it on sovereign hardware, so an auditor can check what a system actually did without ever being let inside.
22 Jun 2026
Your AI Decision Is Discoverable. Can You Prove What It Did?
Every automated decision is now discoverable, by a regulator, a court, or the person it harmed. Explainability cannot answer for it, because a model narrating its own reasoning is still just a story. Mickai builds the alternative: a signed Open Audit Record, a hash anchored to Bitcoin through Pantheon, all on sovereign hardware, so anyone can verify what an AI did without trusting the operator.
See all articles →