About

Cedric Merlin founded M-KIS SAS in March 2025 in Maxéville (54). A certified ISO 27001 Lead Auditor, he supports SMBs, IT services companies, and SaaS vendors in their ISO 27001 certification and NIS2 compliance work.

M-KIS SAS — a French simplified joint-stock company with share capital of €1,000, registered with the Nancy Trade and Companies Register under SIRET 942 515 446. Registered office: Maxéville (54320), France. An independent cybersecurity consulting firm, 100% open source, with no vendor lock-in.

To become the European leader in data protection at LLM interfaces, with a lightweight sovereign detection engine that runs everywhere — browser, terminal, development environments, mobile. A trust layer native to generative AI, GDPR and NIS2 compliant by design, with no dependency on an American or Chinese model provider.

Generative AI is settling into companies' daily routines faster than governance maturity. A developer pastes an API secret into ChatGPT. An HR rep drops an IBAN into Claude. These daily leaks are the most underestimated GDPR blind spot of 2026. M-KIS is building SafePrompt to close that gap.