The Sovereign Digital Infrastructure for Algerian Businesses and Public Administrations.
Yamoa Solutions helps public entities and private companies comply with Decree 26-07 and accelerate their digital transformation — with 100% local AI. Zero foreign cloud. Zero compromise on sovereignty.
Total sovereignty
Deployed exclusively on Algerian infrastructure. No data leaves the national territory. Strict compliance with Algerian digital sovereignty law.
Decree 26-07 compliance
Legal obligation since January 2026: every public entity must create a cybersecurity unit. We guide you from the initial audit to full deployment.
Deployed in under one hour
Infrastructure as Code via Ansible. The full stack (PostgreSQL, Flask, Odoo) is operational in under 60 minutes on your server.
Why Yamoa Solutions?
70M+ cyberattacks in Algeria in 2024 (Kaspersky). Algeria is the 17th most targeted country in the world. Fewer than 20 active cyber firms facing hundreds of public organizations that urgently need to comply.
Cybersecurity & industrial expertise
30 years of industrial automation experience (OT/IT, SCADA, SMEs), a Master's in cybersecurity and expertise in AI architecture and quantum computing. A rare combination of skills within the Algerian market.
Guaranteed Decree 26-07 compliance
Flash audit, risk mapping, tailored security policies and remediation plan. Your cybersecurity unit attached to the top executive, as required by law.
Live and operational
Our solution has been deployed and operational for several months. We don't sell promises — we deliver a tested, secure and ready-to-use platform.
The 3 Yamoa pillars
An integrated offering: from cybersecurity compliance to document intelligence, to the deployment of a complete sovereign digital infrastructure.
Pillar 1 — CyberUnit-as-a-Service
Virtual CISO for SMEs and public entities. Lightweight SOC, Decree 26-07 compliance audits, VAPT, risk mapping and continuous monitoring. For organizations without an internal security team.
Pillar 2 — Cyber-Compliance SaaS AI
RAG trained on Algerian laws. Automated compliance scoring. Action plan generation in French and Arabic. Sovereign dashboard to manage your cybersecurity posture.
Pillar 3 — RAG & Automation
Intelligent indexing of invoices, contracts and legal documents. Instant semantic search in Arabic and French. Direct integration with Odoo Community (Algerian VAT configured).
Our sovereignty commitment
Every solution is deployed on Algerian sovereign infrastructure. No dependency on foreign clouds (AWS, Google, Microsoft) — prohibited by Algerian law for critical data.
Concrete use cases
Immediately operational solutions for the realities of the Algerian market — public sector, SMEs, industry and services.
Public administrations
Mandatory Decree 26-07 compliance. Audit of existing systems, creation of the cybersecurity unit, remediation plan and monitoring dashboard — attached to the top executive.
Industrial SMEs & energy
Securing OT/IT systems, SCADA and industrial networks. Segmentation, PLC hardening, continuous monitoring. Your field experience taken into account.
Legal & accounting firms
RAG on Algerian case law, contracts and tax laws. Semantic search in Arabic and French. Automatic invoice extraction to Odoo. Hours of manual work saved every week.
Banks & insurance
Regulatory compliance, cyber risk analysis, automated reporting and cryptographic audit trail. Every action logged, timestamped and signed.
Universities & education
Complete sovereign digital infrastructure — Nextcloud (replaces Google Drive), Mailcow (replaces Gmail), Jitsi videoconferencing, Zulip messaging. 100% legal and local.
Before / After Yamoa
Before: Google Drive (data in the USA), Gmail/Outlook (US Cloud Act), Salesforce + QuickBooks (disconnected silos). After: Nextcloud + Mailcow + Odoo — 100% legal, unified, sovereign.
Military-grade security
A 5-layer Defense-in-Depth architecture. 99.9% uptime. Recovery in under one hour via Ansible. 24h RPO with Restic 3-2-1 backups.
100% Algerian data
Hosted exclusively on Algerian VPS or on-premise at the client site. Zero exposure to the US Cloud Act. Legal prohibition on foreign clouds for critical data.
End-to-end encryption
AES-256-CBC at rest. TLS 1.3 in transit. Per-client rotating keys. SSH ED25519 on restricted port. Fail2ban + CrowdSec IDS/IPS active 24/7.
100% open source stack
Nextcloud, Mailcow, Odoo, n8n, Metabase, Keycloak, Prometheus/Grafana. Auditable code at any time. Zero license cost. Zero vendor lock-in.
Complete audit log — 7-year retention
Every action is logged, timestamped and cryptographically signed. Instantly respond to Algerian legal and fiscal requirements. Full traceability for audits and internal control.
Our deployment methodology
4 steps for rapid and lasting compliance. From the initial audit to sovereign production deployment.
Flash audit
3 days to identify your gaps with Decree 26-07, map your risks and establish action priorities.
Personalized remediation plan
Tailored roadmap with deadlines, monitoring indicators and security policies written for your entity.
Sovereign deployment
Installation on Algerian VPS via Ansible. Full stack operational in under one hour. Security testing and validation in real conditions.
Continuous monitoring & support
24/7 Prometheus/Grafana monitoring, proactive alerts, regulatory updates and ongoing support. Guaranteed SLA.
The Yamoa Solutions team
First Algerian MSSP combining industrial cybersecurity, AI automation and sovereign cloud supervision.
Mohamed Ledjiar — CEO & Technical Architect
Electrical and automation engineer. 30 years in industrial SMEs (OT/IT, SCADA). Architect of the Yamoa platform. Expert in sovereign digital transformation.
Yacine Seddar — Cybersecurity Expert
Master’s in cybersecurity. Wazuh, CIS Benchmark and Zero Trust specialist. Responsible for Decree 26-07 compliance, local certifications and lightweight SOC supervision.
Dr. Amine Chabane — Scientific Advisor
PhD in physics (University of Frankfurt), quantum computing. Advises the team on advanced AI architectures, complex systems and LLM engineering.
Frequently asked questions
Everything you need to know before contacting us for a free audit.
Does my data stay in Algeria?
Yes, absolutely. Everything is hosted on Algerian VPS or on-premise at your site. No data transits through foreign clouds. Full compliance with Algerian digital sovereignty law.
What is Decree 26-07?
Published on January 21, 2026, it requires every public entity to create a dedicated cybersecurity unit attached to the top executive. It also requires risk mapping, remediation plans and mandatory incident notification.
How long does compliance take?
Generally 30 to 90 days depending on the size of the entity. We start with a 3-day flash audit to establish your personalized roadmap with deadlines and indicators.
Do you work with SMEs too?
Yes. We offer 3 models: Yamoa Shared (shared infrastructure for SMEs, 20-50 clients/VPS), Yamoa Private (dedicated VPS for regulated professions) and Yamoa Enterprise (custom deployment for governments and institutions).
Do you use foreign tools?
No. Our stack is 100% open source: Nextcloud, Mailcow, Odoo, n8n, Metabase, Keycloak, Prometheus/Grafana. No Google, no AWS, no Microsoft. Zero license cost.
Is Yamoa an officially recognized company?
Yamoa Solutions holds the Algerian Startup Label (Decree 20-254), an official state recognition granted to innovative tech companies. For you, this label is a guarantee of seriousness, sustainability and institutional grounding — it also allows us to access government programs that strengthen our capacity to serve you.
Decree 26-07 compliance in 90 days
Request a free 30-minute audit. We identify your priorities and propose a concrete action plan with a personalized roadmap.