MISSION BRIEF PILOT PM / SOVEREIGN INFRASTRUCTURE

Business Stack

Everything your team needs to work. Nothing that reports back to Google or Microsoft.

Your team pays for Microsoft 365 or Google Workspace every month. In return, those platforms scan your documents, train their AI models on your data, and retain the right to access your content under US law. You are not the customer. You are the product.

Is this for you?

→ Your team runs on Microsoft 365 or Google Workspace and the bill keeps climbing → You've noticed that "AI improvements" in these platforms require your data to train them → Someone in your organization has asked whether Google or Microsoft can read your documents → You want business tools that work like the familiar ones — without the surveillance

What this means in practice

Your documents stay yours

no Google scanning for ads, no Microsoft Copilot training on your content

Predictable monthly cost

fixed infrastructure pricing, not per-seat SaaS that grows with every hire

Works like what you know

same workflows, familiar interfaces, different ownership

One login for everything

SSO across every tool your team uses

What PILOT deploys for you

Business Mail

Professional email on your domain. iRedMail stack with Proofpoint security and CrossBox for a modern webmail interface your team will actually prefer over Outlook. Full encryption, spam filtering, and audit logs.

File Storage & Collaboration

Nextcloud as your private Google Drive and SharePoint replacement. File sync across devices, shared folders, document collaboration with OnlyOffice integration, versioning, and granular access control. Your files, on your servers.

Calendar & Contacts

Shared calendars and contact management integrated with your mail and identity stack. Works with native calendar apps on every platform — no proprietary client required.

Video Meetings

Jitsi Meet on private infrastructure — video calls and screen sharing without a Zoom or Teams account. No recording stored on third-party servers. No meeting data leaving your environment.

Team Chat

Mattermost or Matrix/Element as your Slack or Teams replacement. Persistent channels, direct messages, file sharing, integrations with your other tools. Runs on your servers, message history is yours.

Identity & Access

Single sign-on across every tool in the stack. Authentik or Keycloak — one login, one place to manage access, one audit trail. When someone leaves your company, one action revokes everything.

Who this is for

→ Teams of 10–200 that are paying for Microsoft 365 or Google Workspace and questioning the value

→ Companies with clients who have asked about data handling — "where does our information go?"

→ Organizations in the EU subject to GDPR where using US-owned tools for internal communication creates compliance exposure

→ Any business that wants to control its own infrastructure rather than renting it from companies whose interests don't align with theirs

The stack

Mail — iRedMail + Proofpoint + CrossBox
Files — Nextcloud with OnlyOffice document editing
Calendar/Contacts — Nextcloud Calendar + Contacts (CalDAV/CardDAV)
Video — Jitsi Meet
Chat — Mattermost or Matrix/Element
Identity — Authentik or Keycloak, SSO + MFA
Monitoring — TOWER across all services

// NERD TALK

Not your thing? Skip to Related missions.

Nextcloud — CalDAV/CardDAV compatible with iOS/Android/macOS/Windows native apps. OnlyOffice integration provides .docx/.xlsx/.pptx editing with real-time collaboration.
Mail — Postfix + Dovecot + Rspamd via iRedMail. Proofpoint as MX gateway for inbound filtering and outbound relay. CrossBox as IMAP webmail client.
Chat — Mattermost for teams wanting a Slack-like UX. Matrix/Element for teams wanting federation capability or stronger encryption guarantees (E2EE by default).
Video — Jitsi Meet with Prosody XMPP backend. TURN/STUN via coturn for NAT traversal. No recording infrastructure unless requested.
Identity — Authentik supports LDAP, SAML 2.0, OAuth2/OIDC. Integrates with Nextcloud, Mattermost, Gitea, and virtually any modern app. User provisioning via SCIM.
Sizing — Full stack for 50 users: 4 vCPU / 8GB RAM / 500GB storage minimum. Scale storage independently.

Want to build this yourself?

Read the Pilot Book: Business Stack — deploying Nextcloud, mail, chat, and video on your own infrastructure, with SSO tying it all together.

Related missions

Sensitive Industries — if your business handles legally protected information
Developer Stack — add a private Git and CI/CD layer
Migration — moving from Microsoft 365 or Google Workspace

Related services

Managed Mail — mail stack details
Private Cloud — storage and collaboration details
Managed Identity — SSO and access control

Stop renting your workplace from companies that profit from your data. Let's talk.