Sovereign Deploys SaaS · on-prem · fully air-gapped

One platform.
Four suites.
Sovereign by design.

Clario360 unifies data resilience and corporate operations on a single configurable core — one login, one audit, Arabic-first. Built once as shared services, so every application inherits the platform instead of rebuilding it.

0Product suites
0Enterprise applications
0Regulatory frameworks
0Ways to deploy

8 of 15 applications are generally available today — 7 more on the 2026–27 roadmap.

app.clario360.sa
Clario360 disaster-recovery readiness console showing a live readiness score, failover actions and the recovery lifecycle
Architected for the institutions that demand sovereignty
NCASAMAPDPLNajizZATCAISO 27001
Trusted foundations

Built for the Kingdom's regulatory bar

Clario360 maps to the frameworks Saudi institutions are audited against — and deploys where your data is required to stay.

Framework packs ship in-platform. Alignment reviewed 2026 — evidence available under NDA. Marks denote alignment, not certification.

The problem

Point tools don't add up to a platform

Most institutions run a dozen disconnected products. The cost isn't the licences — it's everything that has to be rebuilt around them.

Tool sprawl

A dozen point products, each with its own login, data model, and audit trail to reconcile.

The integration tax

Every new tool means brittle point-to-point integrations to build — and maintain forever.

Data leaves the Kingdom

SaaS-only vendors move regulated data offshore, outside NCA and PDPL control.

No single source of truth

No unified identity, audit or reporting across the stack — so diligence stays manual.

Product tour

See the platform

Real screens from the running product — the same consoles your teams operate from day one.

ClarioDR · Disaster recovery

Recover in minutes — and prove it to your regulator

A recovery console that turns failover into a governed, evidence-producing operation instead of a leap of faith.

  • Gated failover with sealed, tamper-evident recovery points
  • Drills and game-days that generate regulator-ready evidence automatically
  • Sovereign replication that keeps every copy inside the Kingdom

Explore ClarioDR

app.clario360.sa/dr/readiness
ClarioDR operations console showing a recovery-readiness score, gated failover actions and the recovery lifecycle
RTO-proofevidence-first recovery
WatheeqTech · Legal operations

Legal operations that speak Arabic first

A legal command center built for departments in the Kingdom — not a translation bolted onto someone else’s tool.

  • One legal service desk covering eight legal services end to end
  • Hijri-aware deadlines and a court calendar that never misses a hearing
  • Najiz-, Nafath- and e-signature-ready integrations — sandbox-verified today

Explore WatheeqTech

app.clario360.sa/legal/calendar
WatheeqTech legal calendar in its native Arabic interface, with Hijri-aware hearing dates and legal deadlines
Arabic-nativeHijri-aware calendaring
Platform · Workflow engine

Design a process once, run it everywhere

One visual designer and one shared engine power every approval in every suite — no per-app workflow silos.

  • Visual designer with approval chains and four-eyes controls
  • 75+ prebuilt templates for the processes enterprises actually run
  • One engine shared by every suite — model once, reuse everywhere

Explore the workflow engine

app.clario360.sa/workflows/designer
Visual workflow designer canvas showing a commercial-registration renewal flow with approval-chain nodes
81 templatesprebuilt, ready to run
ClarioSec + ClarioInsight · Security & intelligence

See everything — without your data leaving the Kingdom

Security operations and executive intelligence, running on the same sovereign data plane.

  • A SOC with detections mapped to MITRE ATT&CK out of the box
  • Risk heatmaps and exposure scoring across your whole estate
  • Executive dashboards on the same data — no exports, no copies

Explore the security suite

app.clario360.sa/soc/overview
Security Operations Center console with a live alert queue, severity breakdown and MITRE ATT&CK technique heatmap
MITRE-mappeddetections & heatmaps
The product

Four suites, built on one core

Each suite is a family of applications that share the platform — so capability compounds across resilience, operations, security and analytics, and you never pay to build the same thing twice.

Ready to see it on your own data?

A guided demo on a sovereign deployment — mapped to your frameworks and workflows.

Sovereign by design

Your data never has to leave the Kingdom

Sovereignty isn't a deployment option bolted on at the end — it's the constraint every component is built to. No cloud-only dependencies, anywhere in the stack.

  • In-Kingdom data residency by default
  • Air-gapped and classified-environment ready
  • Bring-your-own-key (BYOK) — you hold the root of trust
  • Full audit trail inside your own tenant
  • Static binaries — no external calls required to run
How it works

One core. Adopt at your pace.

Everything runs on shared services, so you start small and compound — without re-platforming.

1
Choose your suites

Begin with one suite or the whole platform. The full core ships with any of them.

2
Deploy your way

Managed SaaS in-Kingdom, in your own data centre, or fully air-gapped — one codebase.

3
Configure, don't code

Workflows, forms, integrations and automation are admin-configured, not redeployed.

4
Compound across suites

Apps share identity, audit and the event bus, so every addition makes the rest stronger.

Foundations

Six principles every part of the platform obeys

These are not slogans — they are architectural constraints. Each one removes a category of cost, lock-in, or duplication before it can take root.

P01

Platform-First

Shared services built once — every app consumes, none re-implements.

P02

Config Over Code

Workflows, forms, integrations and automation are admin-configured, not redeployed.

P03

Contract-First APIs

OpenAPI / protobuf contracts precede code; versioned, generated, enforced at the gateway.

P04

Event-Driven Core

Suites integrate through the event bus — no direct cross-suite coupling.

P05

Sovereign by Design

Every component deploys SaaS, on-prem and air-gapped — no cloud-only dependencies.

P06

Arabic-First UX

RTL/LTR and bilingual content are platform concerns, solved once in the shared shell.

Sovereign by design

Three deployment worlds, one codebase

No cloud-only dependencies anywhere in the stack. The same components run as managed SaaS, inside your data centre, or in a fully disconnected environment.

Managed

SaaS

Fully managed in a sovereign region. Fastest to value, with Clario360 operating the platform for you.

  • In-Kingdom hosting
  • Managed upgrades & SLOs
  • Elastic by tenant
Self-hosted

On-premise

Runs inside your own data centre under your control, using the identical components as the managed service.

  • Your infrastructure
  • Your operations team
  • Same codebase as SaaS
Disconnected

Air-gapped

A static-binary core with no cloud-only dependencies, deployable into fully disconnected, classified environments.

  • No external calls required
  • Static binaries, portable
  • Classified-environment ready
Security & compliance

Compliance is built in, not bolted on

The controls auditors ask for are platform features — shared once, inherited by every application.

Framework packs

NCA ECC, SAMA CSF, PDPL and ISO 27001 mappings ship in-platform and stay current.

One audit trail

Every action across every suite writes to a single, tamper-evident audit log.

Identity & access

Shared IAM with SSO, RBAC and separation-of-duties enforced at the gateway.

Encryption & keys

Data encrypted in transit and at rest, with BYOK and customer-managed key options.

Integrations

Fits the stack you already run

Identity, government services, data stores, and event streams connect over open, documented interfaces — no rip-and-replace, no proprietary lock-in.

SAML SSO
SCIM Provisioning
Nafathsandbox
Najizsandbox
emdha e-signsandbox
ZATCAgov
SMTP Email
SMS Gateway
E-Archive (WORM)
S3-compatible Storage
PostgreSQL
Oracle
SQL Server
Kafka / CDC
Syslog / CEF
Webhooks
Open REST API
Power BI-ready export

Government-gated connectors (Nafath, Najiz, emdha) ship sandbox-first and are enabled per tenant once official credentials are issued.

0minRecovery time objective with boot-ordered failover
0sChange-data-capture lag SLO across ClarioSync
0%Cost per terabyte vs global cloud warehouses
0%In-Kingdom data residency, air-gap capable
The economics

One platform, not a stack of point tools

Model the difference between licensing and integrating a dozen products versus running one core. Illustrative — we'll build a costed model for your environment.

6
1,000
12
Estimated point-tool stack$732Klicences + integration upkeep, per year
Indicative annual difference$260Kredirected from duplication to outcomes

Illustrative model for comparison only — not a quote. It assumes a per-tool licence baseline, per-user scaling, and ongoing integration maintenance that a unified platform removes. We’ll build a costed model for your environment on request.

Pricing

Licensed by suite, priced for the institution

Flat and predictable — by suite and deployment model, never per seat. Every configuration includes the full platform core.

Trial

Self-serve selected products on the shared trial plan.

Free
14 days · SaaS

Suite

One suite and its full application family on the complete core.

Tailored
Per suite · annual

Sovereign

Dedicated sovereign infrastructure with bespoke assurance.

Bespoke
Air-gapped / classified
Questions

Common questions

One sovereign enterprise platform: four product suites and a shared core of platform engines, under one login and one audit trail — built Arabic-first.

8 of 15 applications are generally available now; the remaining 7 are on the 2026–27 roadmap. Every plan includes the full platform core of 12 shared engines.

Yes. The core is a set of static binaries with no cloud-only dependencies, so the identical components run as managed SaaS, on-premise, or in a fully disconnected environment.

In-Kingdom by default, on infrastructure you approve. Bring-your-own-key encryption keeps the root of trust in your hands.

Yes — most institutions begin with one suite and add others later. The full platform core comes with any of them.

By suite and deployment model, not per seat — flat and predictable, with no consumption surprises. Air-gapped deployments are scoped with you directly.

One sovereign platform. Every critical operation.

See resilience, legal, security, and insight working together — a guided demo on your scenarios, in English or Arabic.

Clario360 — The Sovereign Enterprise Platform