Designed with your home regulator in mind.
Xlooop is Australian-headquartered (ADEVI PTY LTD trading as Xlooop) and available worldwide. Our legal posture is global by legal coverage · focused by GTM — the Stripe pattern. Five launch markets: AU + US + UK + DE + FR.
currently showing · 🇦🇺 Australia · switch region in the top nav to repaint this page + /trust + /legal/*.
※ IP coverage · US Patent 11,604,641 (US grant · 24 claims · 2 independent · granted 2023) · European patent pending (decision Oct 2026). Adevi IP Holding Company Pty Ltd is the patent assignee.
Five regimes — one cockpit.
🇦🇺 Australia · regulator stack
Privacy regime · Privacy Act 1988 (Cth) · OAIC AI Guidance (Oct 2024).
Legal framework remains EU-wide.
Our v2.1-FINAL privacy policy + terms + data sovereignty pages address EU GDPR + EU AI Act at the union level (with national DPAs named for DE + FR specifically). EU customers from other Member States (NL · IT · ES · BE etc.) sign under the same EU-framework terms — they’re just outside our active GTM focus.
Constant across all five regimes.
Region-bound by default
Your data lives in your home edge — AU edge for AU · US edge for US · UK edge for UK · EU edge for DE+FR. No cross-edge transfer without explicit operator action + warning + audit-trail entry.
Voluntary higher standard
We voluntarily comply with the Australian Privacy Principles even under small-business exemption; we extend that voluntary-compliance posture to EU GDPR + UK GDPR + CCPA/CPRA + state laws as multi-jurisdictional good-faith baseline.
Cross-border transfer mechanism
EU SCCs 2021 Module 2 (controller-to-processor) for EU→AU transfers; UK IDTA + EU SCCs UK addendum for UK→AU; APEC CBPRs + APP 8 reasonable steps for AU→US.
Practitioner-attested before publication
AU-qualified legal practitioner sign-off on Privacy + Terms + Data Sovereignty v2.1-FINAL is the non-negotiable publication gate for AU; US + UK + DE + FR practitioner sign-off required pre-respective-country GTM.
National-DPA-addressable
DE customers see BfDI + Länder DPAs; FR customers see CNIL; UK customers see ICO. No generic "the EU DPA" framing — every supervisory authority is named.
No transfer without notice
Cross-border transfers disclosed in privacy policy + data-sovereignty page; customers can request a region-pin at engagement.
What changes when you switch region.
Ten things repaint when you change country in the top-nav switcher — pre-signup it’s session-scoped; post-signup it’s persisted to your workspace preferences.
- 01Regulator panel (this page + /trust) re-renders to your home-country regulators
- 02Pricing currency switches (A$ → US$ → £ → €) with exchange-rate lock-at-engagement
- 03Data residency language shifts to home-country edge
- 04Privacy notice swaps to home-country collection notice
- 05Supervisory-authority escalation path updates
- 06Stats swap to home-country sources (NAIC AU · Stanford+McKinsey US · Ofcom UK · Bitkom DE · Numeum FR)
- 07Cyber-cost stat swaps to home-country source
- 08Sweep sources swap to home-country public registers
- 09Accounting platforms swap to home-country dominant providers
- 10Sample firm "Meridian Accounting Partners" swaps entity form (Pty Ltd · LLC · Ltd · GmbH · SAS) + ID format (ABN · EIN · Companies House · HRB · SIREN)
The five questions buyers ask in regional review.
Three doors. Same destination: a firm whose AI work is provable.
Pick the one that fits where you are today — none commit you to anything.
Or simply email hello@xlooop.com — one human reads every message.