Lighthouse icon

Lighthouse

AI revenue management and business intelligence for hospitality and travel

vs
Corti icon

Corti

Danish AI clinical decision support for emergency medicine and patient triage

Lighthouse
80%Strong
20/25
Corti
96%Excellent
24/25

Score Breakdown

DimensionLighthouseCorti
Data Residency
Where is your data stored and processed?
Lighthouse: Data hosted on AWS with EU region configuration for European customers. Belgian incorporation means primary data governance is under EU law. Appropriate for European hotel groups with GDPR obligations on guest and revenue data.
Corti: Data processed exclusively in EU data centres (Denmark/Germany). Danish incorporation means EU law governs by default. No US cloud dependency. Maximum data residency for healthcare AI.
4/5
5/5
Legal Jurisdiction
Which laws govern the company and your data?
Lighthouse: Incorporated in Belgium under Belgian and EU law. GDPR applies as a matter of corporate law, not just contractual obligation. EU incorporation with no US parent company. No CLOUD Act exposure. Strong EU sovereignty story for the hospitality sector.
Corti: Danish ApS incorporated under Danish and EU law. GDPR and EU AI Act apply as corporate law. Datatilsynet (Danish DPA) is the lead supervisory authority. No CLOUD Act exposure. Strongest possible EU jurisdiction profile.
5/5
5/5
Data Retention & Training
Is your data used for model training?
Lighthouse: Customer hotel data is not used for cross-customer model training without consent. GDPR-compliant data processing agreements available under Article 28. Configurable data retention aligned with hospitality operational requirements.
Corti: Patient conversation and clinical data not used for cross-customer model training without explicit consent. Configurable retention aligned with healthcare regulatory requirements. GDPR-compliant DPA as healthcare data processor.
4/5
5/5
Certifications
ISO 27001, SOC 2, Cyber Essentials, etc.
Lighthouse: Holds ISO 27001 certification. Appropriate baseline for a hospitality technology platform. SOC 2 Type II would strengthen the posture for hotel groups with enterprise procurement requirements.
Corti: Holds ISO 27001 (information security) and ISO 13485 (medical devices quality management), demonstrating compliance with EU Medical Device Regulation (MDR) requirements. Strong certification posture for a clinical AI company.
3/5
4/5
Regulatory Fit
Suitability for regulated industries and professional services
Lighthouse: Excellent fit for European hotel operators subject to GDPR and national data protection authorities. Belgian legal jurisdiction and EU data hosting provide a credible compliance posture. Good alignment with hospitality-specific data governance requirements.
Corti: Excellent fit for EU healthcare organisations including NHS, Nordic public health systems, and German/French hospital groups. MDR compliance, GDPR-native design, and EU jurisdiction make this one of the highest-scoring healthcare AI tools for European regulated use.
4/5
5/5
Total Score
20/25
24/25

Best For

Lighthouse iconLighthouse

Best for EU-headquartered organisations needing maximum data sovereignty; regulated industries (CNIL, BaFin); privacy-conscious teams who need strong data retention controls.

Corti iconCorti

Best for EU-headquartered organisations needing maximum data sovereignty; regulated industries (ICO, APD (Belgium)); privacy-conscious teams who need strong data retention controls.

Detailed Comparison

Corti vs Lighthouse: Trust & Compliance Comparison

Corti (Corti, DK) scores 24/25 overall with a Gold (Excellent) trust badge. Danish AI clinical decision support for emergency medicine and patient triage. Lighthouse (Lighthouse, BE) scores 20/25 with a Silver (Strong) trust badge. AI revenue management and business intelligence for hospitality and travel.

Dimension-by-Dimension Breakdown

#### Data Residency

Corti leads with 5/5 vs 4/5.

Corti (5/5): Data processed exclusively in EU data centres (Denmark/Germany). Danish incorporation means EU law governs by default. No US cloud dependency. Maximum data residency for healthcare AI.
Lighthouse (4/5): Data hosted on AWS with EU region configuration for European customers. Belgian incorporation means primary data governance is under EU law. Appropriate for European hotel groups with GDPR obligations on guest and revenue data.

#### Legal Jurisdiction

Both score equally at 5/5.

Corti (5/5): Danish ApS incorporated under Danish and EU law. GDPR and EU AI Act apply as corporate law. Datatilsynet (Danish DPA) is the lead supervisory authority. No CLOUD Act exposure. Strongest possible EU jurisdiction profile.
Lighthouse (5/5): Incorporated in Belgium under Belgian and EU law. GDPR applies as a matter of corporate law, not just contractual obligation. EU incorporation with no US parent company. No CLOUD Act exposure. Strong EU sovereignty story for the hospitality sector.

#### Data Retention & Training

Corti leads with 5/5 vs 4/5.

Corti (5/5): Patient conversation and clinical data not used for cross-customer model training without explicit consent. Configurable retention aligned with healthcare regulatory requirements. GDPR-compliant DPA as healthcare data processor.
Lighthouse (4/5): Customer hotel data is not used for cross-customer model training without consent. GDPR-compliant data processing agreements available under Article 28. Configurable data retention aligned with hospitality operational requirements.

#### Certifications

Corti leads with 4/5 vs 3/5.

Corti (4/5): Holds ISO 27001 (information security) and ISO 13485 (medical devices quality management), demonstrating compliance with EU Medical Device Regulation (MDR) requirements. Strong certification posture for a clinical AI company.
Lighthouse (3/5): Holds ISO 27001 certification. Appropriate baseline for a hospitality technology platform. SOC 2 Type II would strengthen the posture for hotel groups with enterprise procurement requirements.

#### Regulatory Fit

Corti leads with 5/5 vs 4/5.

Corti (5/5): Excellent fit for EU healthcare organisations including NHS, Nordic public health systems, and German/French hospital groups. MDR compliance, GDPR-native design, and EU jurisdiction make this one of the highest-scoring healthcare AI tools for European regulated use.
Lighthouse (4/5): Excellent fit for European hotel operators subject to GDPR and national data protection authorities. Belgian legal jurisdiction and EU data hosting provide a credible compliance posture. Good alignment with hospitality-specific data governance requirements.

Certifications at a Glance

CertificationCortiLighthouse
ISO 13485YesNo
ISO 27001YesYes

Overall Verdict

Corti has a clear trust advantage, scoring 24/25 compared to Lighthouse's 20/25. Corti particularly excels in data residency, data retention & training, certifications, regulatory fit.

Frequently Asked Questions

Which is better for EU compliance, Lighthouse or Corti?

Lighthouse has a TrustKit score of 20/25 while Corti scores 24/25. Corti currently rates higher across data residency, legal jurisdiction, data retention, certifications, and regulatory fit.

How do Lighthouse and Corti compare on data residency?

Lighthouse scores 4/5 for data residency (Data hosted on AWS with EU region configuration for European customers. Belgian incorporation means primary data governance is under EU law. Appropriate for European hotel groups with GDPR obligations on guest and revenue data.), while Corti scores 5/5 (Data processed exclusively in EU data centres (Denmark/Germany). Danish incorporation means EU law governs by default. No US cloud dependency. Maximum data residency for healthcare AI.).

Are Lighthouse and Corti GDPR compliant?

Both tools are assessed across five compliance dimensions. Lighthouse has a regulatory fit score of 4/5 and Corti scores 5/5. Check the full comparison above for a detailed breakdown.

Explore Each Tool