arrow_back Back to All Case Studies
Explore: Velocity Apex Catalyst Sentinel

PROJECT SENTINEL

Industry: Investment Banking / Private Equity
Squad: Vikram Patel (Lead) & Priya Sharma

Secure Enterprise RAG for Financial Audits. Architecting an air-gapped, role-based access control layer for enterprise-scale LLM retrieval. Ensuring data sovereignty while eliminating the manual burden of scanning 10-K reports.

warning THE PROBLEM: MANUAL AUDIT BOTTLENECKS

High-Trust Financial Data

Investment banking and private equity analysts were spending 15+ hours per week manually scanning complex 10-K reports and financial disclosures. Utilizing standard LLMs to accelerate this introduced unacceptable compliance risks.

  • close Severe compliance risk if sensitive non-public data leaked across deal teams.
  • close Manual risk-profile compilation took days, delaying time-to-insight for deals.
  • close Standard vector databases lack row-level, identity-aware access control.
Server Infrastructure

schema THE SOLUTION: AIR-GAPPED RAG & PGVECTOR

pgvector Storage

Secure, on-premise embeddings stored using pgvector within an air-gapped environment, ensuring zero external data leakage.

RBAC Integration

Dynamic evaluation of user claims against deal-team classification tags, enforcing strict information barriers in real-time.

terminal rbac_pgvector_pipeline.py 

def secure_financial_search(query: str, user_context: DealTeamIdentity) -> List[FinancialDocument]:
    # 1. Extract RBAC claims and deal boundaries
    access_filters = policy_engine.generate_filters(user_context.deal_ids, user_context.clearance)
    
    # 2. Embed user query (Air-gapped local model)
    query_embedding = local_embedding_model.embed(query)
    
    # 3. Perform pre-filtered similarity search in pgvector DB
    # CRITICAL: RLS (Row Level Security) and metadata filtering applied
    results = pgvector_db.search(
        vector=query_embedding,
        top_k=5,
        filter_metadata={"$and": access_filters}
    )
    
    return audit_logger.log_retrieval(user_context.id, results)

monitoring IMPACT METRICS

98%
Factual Accuracy
100%
Compliance Achieved
MINS
Risk-Profile Compilation (vs. Days)