Manifesto
Monitoring adversaries. Defending democracies.
We founded Elendil Systems because Europe should not have to choose between protecting its people and protecting their rights. This is what we believe, and what we hold ourselves to.
The problem
Adversaries scaled with AI. Defenders did not.
Democracies and financial systems are under attack by actors using AI for scalable fraud, deepfake-enabled scams, synthetic identities, and coordinated manipulation of online spaces. The cost lands on citizens, institutions, and real economies.
The most powerful data-integration platforms are US-based and subject to US law and the CLOUD Act — a genuine trust and sovereignty problem for European institutions handling sensitive citizen and financial data.
European mission-driven AI has already shown it is possible to build ethics-conscious infrastructure to protect our democracies. Elendil Systems extends that logic to financial crime, illicit AI usage, and digital fraud.
“We monitor behaviour in order to protect the public — and we submit that monitoring to European law, oversight, and technical safeguards.”
We are not a privacy-washing brand. Monitoring is central to the product. So is honesty about it: we analyse publicly available information and financial data, including personal data, to detect networks and behaviours that meet clearly defined risk and illegality criteria — and nothing beyond that purpose.
Our commitments
Four commitments we engineer, not just declare.
Each is a constraint on what we build and how we operate. Hold us to them.
European data sovereignty
Core infrastructure, cryptographic keys, and primary data residency remain within Europe. There is no architectural dependency on US hyperscalers that would, by default, bring citizen and financial data under the CLOUD Act. Sovereignty is not a marketing claim — it is an engineering constraint we accept.
Lawful & proportionate use only
Every deployment is scoped to legally defined purposes — fraud prevention, financial-crime detection, countering illicit AI, protecting democratic processes. Data-minimisation and purpose-limitation are designed into the system, not bolted on. We decline work that cannot be grounded in GDPR, AMLD/AMLR, and sectoral law.
Auditability & explainability
Decisions and alerts are explainable and auditable. Institutions can trace exactly why an entity or pattern was flagged, down to the evidence and risk drivers. We reject opaque scores that no one can interrogate — including ourselves.
Oversight & redress
Monitoring is submitted to European oversight and technical safeguards. Citizens have defined routes — through our clients and regulators — to contest outcomes where applicable. Power over data demands a matching duty of accountability.
Our hopes
What we are building toward.
A Europe that defends itself on its own terms
Security infrastructure that European institutions can trust precisely because it answers to European law — not to a foreign jurisdiction or an advertising business model.
Intelligence that citizens can interrogate
A world where being flagged is never a black box: where the evidence is legible, the safeguards are real, and the right to contest is built in from the start.
Adversaries who lose their asymmetry
AI made fraud and manipulation cheap and scalable. We intend to make detecting and disrupting them just as scalable — and to keep that capability in democratic hands.
A standard, not just a product
An open, auditable benchmark for what ethical trust infrastructure should look like — so that doing this lawfully and transparently becomes the expectation, not the exception.