Buying SafePrompt for a public-sector body

Staff in local authorities and public-sector bodies use generative AI tools online (ChatGPT, Claude, Gemini, and others) every day to draft memos, analyse correspondence, and process citizen files. These uses, rarely supervised, expose the body to leaks of sensitive data: NIR numbers, IBANs, citizen identities, administrative secrets, public-procurement data.

No internal charter is enough: a technical safeguard has become indispensable.

SafePrompt is a browser extension, published by M-KIS SAS (Maxéville, Meurthe-et-Moselle), that automatically intercepts sensitive data in the staff member's browser before it is sent to the AI, and replaces it with tokens that can be reversed locally. No data ever leaves the workstation.

Article R2122-9-1 of the French Public Procurement Code allows public buyers to purchase innovative supplies and services worth less than €100,000 ex. VAT without prior publication or competitive tendering. This special procedure is designed for breakthrough solutions that no conventional tender could identify.

SafePrompt's innovative character rests on three documented elements:

a. Market novelty. No other French solution protecting prompts sent to generative AI models offers a 100% in-browser architecture. The source code is available to public buyers on request under a confidentiality agreement.

b. Technological breakthrough. Competing solutions (Microsoft Purview, Cyberhaven, Nightfall) rely on server-side analysis, which implies prompts transiting to third-party infrastructure — often outside Europe. SafePrompt eliminates that transit by design. No prompt ever leaves the browser.

c. Sovereign protection. French-published, registered with the Nancy Trade and Companies Register, hosted in the European Union (Frankfurt and Paris), GDPR- and NIS2-compliant by design. No dependency on a non-European vendor for the processing of sensitive data.

All plans include: protection of the six main generative AI platforms, bilingual administrator dashboard (French, English), enterprise deployment assistance (Microsoft Intune, Google Workspace, Active Directory GPO, Firefox Enterprise).

As an indication, a public-sector body of 200 staff members on the Business plan represents €1,600 ex. VAT per month, i.e. €19,200 ex. VAT per year — well below the €100,000 ex. VAT cap of the innovation procurement procedure.

To purchase SafePrompt under article R2122-9-1, the public buyer can:

1. Request from M-KIS SAS an official attestation of the innovative character of the solution, to attach to the purchase order.
2. Issue a direct purchase order, without publishing a tender notice.
3. Justify the application of R2122-9-1 in the annual procurement report.

M-KIS SAS systematically and free of charge provides the documents useful to processing the file: innovation attestation, general terms and conditions of sale, recent Kbis, GDPR statement, NIS2 compliance sheet, RIB (bank details).