About CAI Technology

CAI Technology S.R.L. is a privately held Romanian company building post-quantum, hardware-protected, EU-sovereign authentication infrastructure for organisations that take auditability seriously — banks, healthcare providers, defence and government agencies, critical-infrastructure operators, and enterprises that simply refuse to put their employees' or customers' identity through a US-controlled cloud. Our flagship product, Cipher AI Authenticator (CAI-AUTH), replaces passwords and SMS-OTP with a single biometric tap on a phone whose private key never leaves the device's secure element — and signs every authentication with a hybrid classical + post-quantum signature designed to withstand both today's adversaries and tomorrow's quantum computers.

Why we exist

The cybersecurity tools that European organisations depend on every day — Google Authenticator, Microsoft Authenticator, Duo, Okta, Keycloak, Bitwarden, 1Password — are without exception either US-headquartered or US-anchored, with attendant exposure under the CLOUD Act, Schrems II rulings, and the increasing geopolitical decoupling between European data sovereignty and American jurisdictional reach. None of them ship post-quantum cryptography in production. None of them are designed to be self-hosted on classified networks with zero telemetry. None of them carry compliance documentation tailored to PSD3, DORA, NIS2, or the EU Health Data Space.

We built CAI-AUTH because the alternative was a permanent dependency on infrastructure that, however technically excellent, sits outside the legal and political reach of every European customer that adopts it. The choice between security and sovereignty was a false one — and we set out to remove it.

What we do

• CAI-AUTH — the production multi-factor authentication platform, available as Android app, Chrome extension, Python SDK, REST/CBOR server. NSA CNSA 2.0 Category 5 cryptography (Hybrid Post-Quantum). Hardware-protected keys. Self-hostable in EU or air-gap. Live at auth.caitech.ro.
• CAI-Vault (in development, H2 2026) — companion zero-knowledge wallet for passwords, identity documents, payment cards, medical records. Tap-to-share with proof of consent.
• Compliance documentation packages — every major regulatory framework that touches authentication or identity (PSD3, PCI-DSS 4.0.1, DORA, SWIFT CSP, EBA RTS on SCA, HIPAA, EU HDS, NIAP PP, DoD STIG, NSA CNSA 2.0, eIDAS 2.0) ships with a control-mapping document on day one.
• Custom enterprise packages — for organisations needing tailored deployments, negotiated SLAs, OEM licensing, white-label, or air-gap delivery for classified networks.

Who we serve

• 🏦 Banks & fintech migrating off SMS-OTP under PSD3 / PSR mandates
• 🏥 Hospitals & clinics needing HIPAA-grade authentication that survives BAA review
• ⚔️ Defence ministries & intelligence services requiring NSA CNSA 2.0 + air-gap deployment
• ⚡ Critical infrastructure operators (energy, water, transport) under NIS2 obligation
• 🏢 SMBs & mid-market tired of paying per-seat to US identity vendors
• 🤝 MSPs & system integrators looking for a sovereign, post-quantum white-label option
• 👨‍💻 Developers who want a working SDK on PyPI today, not a preview waitlist

Our values

Sovereignty Transparency Auditability Quantum-readiness Open standards

Every release is signed with Sigstore Cosign and uploaded to the public Rekor transparency log. Every component carries a CycloneDX SBOM. Every compliance claim is accompanied by a document a real auditor can use. We do not run telemetry. We do not sell or share customer data. We do not use AI on user data without explicit consent. We publish our cryptographic protocols in the public docs and patent the novel ones defensively (Patent Pending, multiple filings).

Our team

The CAI Technology team carries internationally recognised certifications across information security auditing (CISA), risk management (CRISC), security management (CISM), ISO/IEC 27001 lead auditing, and EU privacy law (CIPP/E). We are based in Bucharest, Romania, and serve customers across the EU, NATO member states, and selected partners in North America, the UK, and the broader EEA. Hiring is currently closed; partnership and integration enquiries are welcome at sales@caitech.ro.

Press & investor enquiries

Patent Pending — multiple filings across OSIM (Romania), EPO (Europe), USPTO (United States), and CNIPA (China) covering hybrid post-quantum authentication, anti-relay proximity proofs, action-visible confirmation flows, continuous behavioural binding, and threshold-based digital inheritance. Investor and media enquiries: office@caitech.ro.

Disclaimer

CAI Technology S.R.L. is a private commercial entity. We are not a government, public, or regulatory authority. References on this site to public regulators (ANPC, ANSPDCP, NSA, NIST, DISA, EBA, ENISA, SWIFT, EU Commission, etc.) describe the standards and frameworks we comply with — they do not represent any affiliation, endorsement, or recognition by those bodies. CAI-AUTH is not a regulated financial, payment, or healthcare service in its own right; it is a security infrastructure product that customers integrate into their own regulated services subject to their own licensing.