CLARESIA · ENTERPRISE READINESS · v1

From scaffold to enterprise SaaS — the honest gap and the path

The Brutal Honest Current State

Today, Claresia is 13 scaffold-grade applications wired together with mocks. Every external dependency is faked: WorkOS, Anthropic Admin API, Microsoft Power Platform, OpenAI Compliance, Dataverse, Stripe, Slack OAuth, Azure Bot Service. There is no production data plane, no compliance certification, no multi-cloud deployment, no customer-facing onboarding flow, no status page, no trust center, no real connectors, no SLA, no marketplace listing.

We have a working IP layer (56 skills, 83 coworks, the cc-051 archetype bundles, cc-053 maturity engine), a working contract layer (Skill IR, Hub schema, fn_telemetry_event), and a working narrative (Phase 1+2+3 PRD). We do not have what enterprise procurement actually requires to sign a 200-seat Italian contract.

This dashboard documents the gap and the path. Italy is the wedge market, Dainese is the design partner, EU is the expansion. No US-federal pursuit.

Build budget to credible
~36 wks
Trust+Status+Docs+Onboarding+Terraform+Governance+CS
Build budget to shipping
~60 wks
Adds: real connectors + SOC2 obs window + Mode C GA
Compliance items planned
11
3 explicitly out of scope (FedRAMP/HIPAA/CMMC)
Glean gap dimensions
13
Honest side-by-side comparison

The 6 enterprise artifacts in flight

Onboarding Portal (local-dev only)
building

Customer-facing 10-step provisioning experience. NOT publicly deployed (would require real WorkOS+Supabase+Anthropic Admin API to be honest). Italian Statuto dei Lavoratori step + tricolore branding + Mode A/B/C + smoke-test SSE waiter. Run locally with `npm run dev` until production credentials are wired.

cc-onboarding-portal/

What's already shipped

Trust Center

Public security/compliance posture: 8 honest certification statuses (Italy + EU only — no FedRAMP), 16 sub-processors (3 active: Netlify+GitHub+Anthropic-internal; 13 planned with target activation dates), DPA template, security whitepaper, NIS2 + EU AI Act readiness packs, customer questionnaire pre-filled, AI disclosures (zero-retention claims), vulnerability disclosure policy.

https://claresia-trust.netlify.app
Status Page

REAL-DATA only: live ping of all 11 production Claresia URLs at build time + JSON status endpoint matching Statuspage v1 schema. Zero mock incidents. Honest disclosure that Claresia is pre-customer + multi-region (eu-south-1 + eu-central-1) arrives Q2 2026.

https://claresia-status.netlify.app
Documentation Site

Astro Starlight + Tailwind, 51 pages, Pagefind search built in. Sections: Get Started · Deploy (modes A/B/C) · Identity (Okta/Azure AD/Google/Generic SAML/SCIM) · LLM Connectors (Claude/Copilot/ChatGPT/Gemini) · Hub schema/storage/provenance/retention · Skills + Coworks · Surfaces (Teams/Slack/Browser ext/Adaptive Cards) · API · Operations runbooks · Trust + Compliance · Per-archetype end-user guides (AE / Engineer / Marketing Mgr / FP&A / 5 Dainese mfg roles). Italy/EU first; no US-federal references.

https://claresia-docs.netlify.app
Customer-Cloud Terraform Modules

REAL Terraform code (33 files, 4838 lines, Apache 2.0 license). 3 modules — `claresia/aws-byoc-eu` (Milano), `claresia/azure-byoc-eu` (italynorth), `claresia/gcp-byoc-eu` (europe-west8). Customer-managed KMS, telemetry redactor with Italian PII (codice fiscale, partita IVA, IBAN, IT phones), mTLS egress to Claresia control plane. 16/16 redactor tests pass.

SCUDO — Agent Governance Framework

Claresia's named equivalent of Glean AWARE. SCUDO = Italian for "shield". 5 pillars: Scansione (pre-exec scan) / Catena di custodia (audit chain) / Uso conforme (EU AI Act) / Dati controllati (LLM Gateway) / Operatori verificati (identity). Maps to 15+ EU AI Act articles + Garante provvedimenti + Statuto dei Lavoratori art. 4. Reference impl + 22/22 tests.

https://claresia-scudo.netlify.app
LLM Gateway (cc-073)

Single egress for every LLM call. 9 Italian PII detectors (codice fiscale checksum, partita IVA Luhn, IBAN mod-97, IT phones, IT addresses, IBAN, PAN, IPV4, names). 4 region-pinned providers (Anthropic eu-central-1, Azure OpenAI italynorth, OpenAI, Google Vertex europe-west8). 5 SIEM connectors (Splunk HEC, Sentinel, Datadog EU, Elastic, internal Hub). EUR quota+cost cap per tenant. 43/43 tests; smoke runs end-to-end on Dainese AE scenario.

https://claresia-llm-gateway.netlify.app
Cloud Marketplace Listings (cc-080)

AWS Marketplace Italia (eu-south-1 Milano) + Azure Marketplace italynorth + GCP Marketplace europe-west8 — 55 source files. EUR pricing + Italian VAT/SDI/partita IVA + Tribunal of Milan jurisdiction throughout. cc-033 v2 pricing aligned across 3 marketplaces. Honest "Listing in approval Q1-Q2 2026" badge — NOT live yet on the actual marketplaces.

https://claresia-marketplace.netlify.app
Customer Success Automation (cc-079)

Spec + workflows + templates. 10 HubSpot workflow JSONs validated. 56 email files (14 templates × EN+IT × HTML+TXT). Slack/Teams welcome bots with Block Kit + Adaptive Card payloads. 19 archetype in-app onboarding tours (5 SaaS + 14 Dainese mfg). 5-tier Outcomes Packages (Starter→Strategic, EUR-denominated). "Responsabile Risultati AI" named role. Italian Statuto dei Lavoratori art. 4 RSU/RSA gate at Step 6.5.

https://claresia-customer-success.netlify.app
Legal Pack — DPA + 4 Questionnaires (cc-dpa-and-questionnaires)

Bilingual EN+IT DPA (17 articles + 5 annexes; Article 16 Italian addendum w/ Statuto dei Lavoratori + Garante alignment + Tribunale Ordinario di Milano). 4 pre-filled questionnaires: CAIQ-Lite v4.0.3 (33Q), SIG-Lite 2026.1 (60Q), EU NIS2 (25Q), Italian Garante (25Q) — 286 total entries bilingual. DRAFT pending Italian outside-counsel legal review. Honest "Planned Q* 2026" answers where Claresia doesn't hold the control yet.

https://claresia-legal-pack.netlify.app
Enterprise Readiness Dashboard (this page)

Investor-facing roadmap from scaffold to enterprise SaaS. 7 tabs: Overview / Modes / Customer Journey / Italy+EU Compliance / Honest Gap vs Glean / Artifacts / Personas. Italy + EU first; no US-federal pursuit.

https://claresia-enterprise-readiness.netlify.app
Phase 1+2 Platform Overview

7-tab investor surface covering cc-059..cc-071 — the scaffold-grade platform layer this enterprise readiness work sits on top of.

https://claresia-cc-platform-phase1-2.netlify.app
Architecture v1 + Customer Journey Blueprint + Italy Scope

~13K-word strategic foundation: 3 deployment modes, 6 layers, 365-day customer journey, 10-step IT admin runbook, Italy+EU compliance roadmap, Glean gap analysis.

What 7 things must be true now

  1. Hire VP Engineering with enterprise SaaS scale-up experience
  2. Sign WorkOS, Vanta/Drata, Statuspage/Instatus, Mintlify contracts THIS QUARTER
  3. Stand up real cloud accounts (AWS + Azure + GCP, dev/staging/prod)
  4. Hire a designer (Linear/Stripe/Vercel-grade UI is non-negotiable)
  5. Hire a CSM with enterprise SaaS experience before 2nd customer
  6. Commit to ISO 27001 audit by Q3 + ISO 42001 by Q4 2026
  7. Publicly announce trust.claresia.com / status.claresia.com / docs.claresia.com URLs even minimal — credibility comes from the surface existing
Source documents
  • architecture-v1.md (~5500 words)
  • customer-journey-blueprint.md (~6000 words)
  • scope-italy-eu.md (Italy decision)
  • research-glean.md (~2500 words, 31 URLs)
  • research-competitors.md (5 vendors, 32 URLs)
  • research-patterns.md (7 topics, 38 URLs)
Live artifacts (Phase 1+2)
  • claresia-cc-platform-phase1-2.netlify.app
  • claresia-cc-059-admin.netlify.app
  • claresia-cc-064-telemetry.netlify.app
  • claresia-cc-061-roster.netlify.app
  • claresia-cc-062-hub-records.netlify.app
  • claresia-cc-068-cards-demo.netlify.app
Design partner
  • Dainese S.p.A. — Italian motorcycle apparel mfg
  • 475 in-scope FTE · 14 archetypes
  • Microsoft Copilot M365 + Azure
  • Mode B (eu-south-1 Milano) primary, Mode C optional