SpaceBox is the world's first multi-layer sovereign data storage platform: quantum-resistant encryption, off-grid hardware, jurisdiction-free hosting in Panama, and a proprietary satellite network. Built for organisations and individuals who need their data to outlive jurisdictions, intermediaries, and the people running the system today.
The US CLOUD Act, FISA Section 702 expansion, and Microsoft's 2025 admission that it "cannot guarantee data sovereignty" for EU customers have made one thing clear: a cloud account, however well encrypted, is never the last word on who can read it. Three problems remain unsolved.
The CLOUD Act lets US authorities reach into US-controlled clouds regardless of where the servers sit. FISA Section 702 (reauthorised April 2024) extends that exposure to non-US citizens whose data transits American infrastructure. The EU-US Data Privacy Framework does not resolve it.
Documents, credentials, private keys, crypto wallets : every digital channel leaves a record. The only way to transfer high-value material privately is to put it on a physical drive and move it by hand. That is the 1970s, not 2026.
Sensitive credentials, family-office records, and encrypted assets routinely die with the person who held the key. There is no automated, jurisdiction-safe way to transfer access to a designated successor without exposing the asset to the intermediary handling the handover.
Same air-gapped architecture, same quantum-resistant authorisation, same dead-man's-switch; across an on-premises appliance you host, a Panama-hosted vault we operate for you, and a space-based add-on that places the data physically beyond reach.
Access rules are defined by the customer before any data is loaded. i46 supplies the platform and the assurance; we do not hold the keys.
Built on QRNG one-time-pad architecture and PQC primitives. Resistant to harvest-now-decrypt-later attacks and the cryptographically relevant quantum computers expected by the early 2030s.
QRNG · OTP · PQCNo network interface in the conventional sense. Data is loaded once, off-grid, against pre-declared rules. The conventional cyber-attack surface is removed by physical design.
Off-grid · physical isolationN-of-M custodian quorums (e.g. three of five executives), cross-organisational sign-off chains (manufacturer + integrator + operator), and time-locked windows that all parties can audit before release.
N-of-M · cross-org · auditIf a custodian doesn't confirm custodianship within a configured window (typically 30 days), the system initiates an automated transfer to a pre-authorised successor - optionally requiring third-party countersignature.
Continuity · inheritanceConfigurable retrieval delays give all custodians a window to identify and block unauthorised requests before any release executes. The right to retrieve is never the same as the act of retrieving.
Configurable · auditableThe customer defines the policy; i46 holds neither the data nor the override. No employee, regulator, or court order in our jurisdiction can produce keys we never possessed.
Customer-sovereignSpaceBox is supported by ESA Technology Broker Czech Republic through the ESA Spark Funding initiative. Our first orbital payload is manifested on CERVSAT-2, scheduled for launch in March 2027: a three-satellite constellation will follow in Year 2 for global coverage.
The same architecture that flies on CERVSAT-2 has been quietly running on terrestrial SpaceBox for customers whose threat model didn't justify orbit - yet.
Customer biometric records held off-grid in a terrestrial SpaceBox, satisfying data-protection regulation while keeping auditable, multi-party access for legitimate retrieval.
● In productionFirmware update keys live in SpaceBox. No update is published unless the manufacturer, integrator, and operator all sign the release: unauthorised pushes are physically impossible.
● In productionComing in 2026: a terrestrial SpaceBox holds SIM credentials for a private 5G network, releasing them on authenticated request. Closes one of the largest exposure points in private mobile deployments.
● In preparationSolves data-at-rest on the device. SpaceBox solves data-at-rest off the device: in the layer that DISK46's key escrow ultimately depends on.
Devices → vaultNIS2 and DORA flag concentration risk and non-EU government access demands as supply-chain ICT risk. SpaceBox is the technical mitigation that NIS2 audits ask for.
Regulatory · NIS2 · DORAPrivate cellular networks need somewhere safe to keep SIM credentials. The 2026 SpaceBox use case for private 5G key custody is the answer.
SIM custody · LTE / 5G SAQuantum-resistant multi-party OTA authorisation for power IoT. SpaceBox is where the authorisation policy lives.
Multi-party OTALive terrestrial beta. ESA-backed satellite launch secured. Founding team with a prior successful exit. We are raising a $10M seed round to deliver the constellation, the Panama facility, and the go-to-market motion that private banking and family offices have asked us to build.
Tell us what you are trying to protect, and from whom. We will tell you which tier fits, what the policy can look like, and what we cannot do - in writing, before anything is loaded.