About Us
Who We Are
Paul Piper
Versatile developer with a knack for AI and multiple programming languages. After studying at EBS Business School, San Francisco State, and University of St. Gallen, he's worked on 100+ enterprise projects for companies like L'Oréal, Konica Minolta, and Amadeus Travel. Has shipped multiple IntelliJ plugins and written a book about the German startup scene.
Jennifer Brehm
Frontend development specialist who's published articles at Smashing Magazine. Studied at EBS Business School, University of Louisville, and Georgia State University (M.Sc. from EBS, MBA from GSU). Has worked on countless software projects as both engineer and project lead, delivering consistently on time and budget.
Our Story
We're Jennifer & Paul, co-founders who've been collaborating since college. Over the past 20 years, we've founded various companies and consistently developed software products—often for large international companies like L'Oréal, Konica Minolta, and Amadeus Travel.
We've worked on all aspects of business and software development, so we know the struggle of information overload firsthand. We both work in dual roles and are used to delivering on time and budget. When AI came around, we immediately saw its transformative effect on society and loved the idea of using it to improve daily lives.
We began developing AIVory in early 2024, pivoting from a different AI-based idea. We tried out different technical solutions before landing on what we have now—a platform that brings regulatory and security checks directly into the IDE where developers actually work.
What We Built
AIVory bridges the gap between regulatory checks and the IDE. Usually, regulatory checks happen much later in the development process, far away from the actual code and the developers writing it. With the growing prevalence of AI-written codebases, it becomes even more important to check code early and often for regulatory and security issues.
The Problem We're Solving
These checks typically happen late in CI/CD pipelines or during audits, causing expensive rework. Teams in finance, healthcare, and SaaS need to shift these checks left—catching issues while code is being written, not after it's committed.
With AI now generating significant portions of codebases, we need:
- Earlier detection of security and compliance issues
- Extra scrutiny for AI-generated code snippets
- One-click fixes that are standards-mapped with audit trails
- Real-time feedback in the tools developers already use
How It Works
Using AI, we spot risks as code is written, apply extra scrutiny to likely AI-generated snippets, and turn fixes into one-click, standards-mapped actions with an audit trail. We're starting with IntelliJ and expanding to VS Code, MCP Server, Claude Code, and CI/CD integrations.
- Real-time validation - Inline warnings and pre-commit gates catch issues before they reach your repo
- AI Code Auditing - Special detection for AI-generated code with origin tracking
- Compliance Dashboard - Live reporting and exportable audit trails for certifications
- Multi-IDE Support - JetBrains IDEs, VS Code, MCP Server, and Claude Code
Supported Standards (18+)
Security & Privacy
- OWASP Top 10 (Security Vulnerabilities)
- GDPR (EU Data Protection)
- DSGVO (German Data Protection)
- HIPAA (Healthcare Data Security)
- CCPA (California Privacy Act)
- PCI-DSS (Payment Card Industry)
Service & Management
- SOC 2 (Service Organization Control)
- ISO 27001 (Information Security Management)
- ISO 27017 (Cloud Security Controls)
- ISO 27018 (Cloud Privacy Protection)
- TISAX (Automotive Information Security)
EU Regulations
- DORA (Digital Operational Resilience Act)
- NIS2 (Network & Information Security Directive)
- EU AI Act (Artificial Intelligence Regulation)
Financial & AML
- AML (Anti-Money Laundering)
- Geldwäschegesetz (German Anti-Money Laundering)
Whistleblower Protection
- Hinweisgeberschutzgesetz (German Whistleblower Protection Act)
Platform Availability
AIVory integrates seamlessly with your development workflow:
- JetBrains IDEs - IntelliJ IDEA, PyCharm, WebStorm, Rider, GoLand, Android Studio, and more
- Visual Studio Code - Full extension with real-time scanning
- MCP Server - Model Context Protocol endpoint for AI integrations
- Claude Code Agent - Direct integration with Claude Code for automated compliance checks
Our Expertise
Our founding team has delivered 100+ enterprise projects through our own agency, with deep focus on developer tooling, security, and compliance. We've shipped and maintained multiple IntelliJ plugins—both for our products and for clients—so we know the platform and enterprise workflows inside and out.
In recent years, we've built applied-AI solutions for code analysis and automation, and we're now leveraging that expertise to surface regulatory risks inline and at scale. This isn't our first rodeo with IDE tooling or compliance requirements.
Who We Built This For
Engineering Leaders who need provable guardrails without slowing development velocity, want automated compliance instead of manual reviews, and require audit-ready documentation for certifications.
Security & Compliance Teams building continuous, auditable controls who need visibility into code compliance status and want to shift security left in the development process.
Developers who want smart, actionable fixes at the point of work, prefer inline warnings over failed CI/CD builds, and need to ensure AI-generated code meets standards.
Key Differentiators
- Real-time, Not Post-Commit - Catch issues while coding, not after pushing
- AI-Generated Code Focus - Special auditing capabilities for AI-written code
- Multi-IDE Native Support - Works in JetBrains and VS Code, not just as CLI tool
- Pre-Commit Gates - Prevent non-compliant code from entering your repository
- Live Compliance Dashboard - Real-time visibility and exportable reports
- Shared Team Policies - Enforce standards across your entire organization