Three tools that keep your AI actions and data off the cloud. Local policy enforcement. Local embeddings. Cloud-verified license — that's the only network call.
Built for developers, lawyers, doctors, and security-conscious teams.
The problem with cloud AI search
Your contracts, patient notes, financial models, and research all get uploaded to a third-party server to generate embeddings. That server can be breached, subpoenaed, or queried by the vendor's own team. Sovereign Suite removes that risk entirely.
Architecture
The only call to curatedmcp.com is a license check on startup. Everything else runs on your machine.
Paste your license key
You get a cmcp_... key by email. Paste it into the desktop app once.
Everything runs locally
Embeddings, indexing, and vector search happen entirely on your hardware. No internet needed after setup.
Ask Claude anything
One line in your Claude or Cursor config. Ask questions — Private Counsel retrieves the right chunks from your local vault.
One-click setup
Paste this into your Claude Desktop or Cursor config. Both tools activate immediately.
{
"mcpServers": {
"private-counsel": {
"url": "http://localhost:3742/mcp"
},
"mcp-auditor": {
"command": "npx",
"args": ["@curatedmcp/auditor", "--mcp"]
}
}
}Works with Claude Desktop, Cursor, Claude Code, and Windsurf.
Pricing
Scan your machine for risky MCP servers.
Local-first action firewall. Intercept every MCP tool call before it executes.
Ask Claude questions across your own documents. Nothing leaves your machine.
Private Counsel + Auditor Pro. One key, both tools.
Legal
Search contracts and case files without uploading to any vendor
Healthcare
Query patient notes and protocols — HIPAA data residency by design
Finance
Ask questions across internal models and reports offline
Research
Index papers and memos locally, query them in Claude forever
License keys are emailed at purchase. Already have one? Sign in to manage your licenses. Questions? Contact us.
Not sure if your current setup is safe?
Run the free MCP Auditor first. It scans every MCP config on your machine and flags risks in under 10 seconds.