Customer-owned architecture for the German Mittelstand. Five concrete packages.

One platform idea, three operational layers, five engagement models. Instead of a generic "AI Process Automation Platform", you get technically clear service depths that you can audit, combine and walk away from when you need to — without vendor lock-in, without the migration trap.

From the repository, not the slide deck.

We co-built the architecture behind the German Government Site Builder (version 11) — running in production at hundreds of federal and state agencies, with a public commit history. That security and audit depth, paired with Mittelstand pace: releases in days, often multiple times a day. That is the standard we apply to all five packages.

We use what we build.

The page you are reading right now runs on the platform layer (AI-Ready CMS as a Service). The build pipeline beneath it is hardened with the DevSecOps discipline. The content operations are automated through the business-outcome layer (process automation). What we recommend to you is exactly the setup you are visiting this page on.

One idea. Three layers. Five packages.

Customer-owned architecture is the idea. It breaks down into three operational layers — platform (what runs), discipline (how it is operated safely), outcome (why it exists in the first place). Five packages make those three layers concrete.

AI-Ready CMS as a Service

TYPO3 with MCP server, RAG over your content, Schema.org and content-provenance — as a full service or self-hosted. Four tiers, from Starter to Custom.

View the CMS package

AI-Ready Commerce as a Service

Sylius with MCP server, RAG over product data, Schema.org markup and content-provenance. Sister package to AI-Ready CMS — same architecture, same operations.

View the Commerce package

AI Agent as a Service

Office Agent Suite and TYPO3 Business Agent with a RAG pipeline. Multi-channel, GDPR-compliant, running on your infrastructure — no data leaks to US hyperscalers.

View the Agent package

Process Automation

Routine work out of heads and spreadsheets. Analysis, optimisation, automation — without replacing your existing IT. On average, 23 hours a week.

View the Automation package

DevSecOps as a Service

Security-by-design in every sprint, automated CI/CD pipelines, 24/7 monitoring. The layer the other four packages run on.

View the DevSecOps package

Plus four cross-cutting areas

Beyond the five service packages, moselwal.com has four cross-cutting areas where topics, operations and products live. If you're not looking for a specific service but for a cross-cutting solution, a conference engagement or a pre-built package — here's where you'll find it.

Operations

Hosting, training, support and three specialised packages. What decides whether a platform survives in production.

Go to Operations

Topics

Cross-cutting solutions like external IT department, GDPR-compliant CMS, and a ROI calculator for digitalisation initiatives.

Go to Topics

Events

International conference engagements, attended remotely — from the Atlanta double sprint to SymfonyCon Warsaw.

Go to Events

Products

Pre-built packages we've proven in multiple mid-market setups — Office Agent Suite and business-agent-pro.

Go to Products

One bracket: customer-owned architecture.

All five packages follow four concrete decisions: code ownership (repository access for customers), build provenance (signed builds, SBOM, reproducible artefacts), identity without lock-in (no IdP that cannot be replaced), documented exit paths (with tested runbooks). That turns the five packages into a single technical practice — not a grab bag.