Iteration Layer
Menu
Features

Ingest

Turn files, pages, and images into workflow-ready data.

Document Extraction Schema-based structured extraction with confidence scores. Document to Markdown Convert PDFs, images, and documents into clean Markdown. Website Extraction Extract structured data from public websites.

Generate

Create images, documents, and sheets from approved data.

Image Transformation Transform, clean up, and adapt images through an API. Image Generation Generate images from prompts and workflow context. Document Generation Create PDFs and documents from workflow data. Sheet Generation Generate spreadsheets and structured exports.

Build

Connect the APIs to developer and automation workflows.

SDKs Use official TypeScript, Python, and Go SDKs. n8n Wire Iteration Layer into visual automation flows. MCP Expose workflow tools to AI agents through MCP. Skills Install ready-made skills for agent tools.
Use Cases

Built For

Agencies

Ship repeatable client workflows with one EU-ready processing surface.

Automation Builders

Connect document, image, and generated-output steps in practical automations.

n8n Agencies

Build n8n workflows with fewer custom HTTP nodes and vendor handoffs.

AI Agents MCP Users Developers Operations Teams SaaS Companies AI Agencies

Recipes

All Recipes Browse implementation patterns for common workflows. Finance Recipes Invoices, approvals, spreadsheets, and reporting. Legal Recipes Contracts, review packets, and audit-heavy workflows. Extraction Recipes Structured extraction examples across document types.
Docs
Getting Started Create an account, generate an API key, and make your first request. Extract Invoice Data Start from the most common structured document extraction recipe. Preprocess Documents for LLMs Convert documents to clean Markdown before classification or routing. Convert Website to Markdown for RAG Extract clean title, summary, markdown sections, and source metadata from a public documentation page for RAG ingestion. Remove Product Backgrounds Use the product-photo recipe most storefront workflows need first. Smart Crop Product Image AI-powered subject-aware crop that centers on the product regardless of its position in the frame. Generate OG Image Generate a branded Open Graph image with a generative wave background, logo, and tagline. Generate PDF Invoice Generate a professional PDF invoice with company branding, line items, and totals. TypeScript SDK Install the official npm package for Node.js and TypeScript. Python SDK Install the official PyPI package for Python workflows. Go SDK Use the official Go client from GitHub. n8n Guide Connect the verified n8n node to production automation workflows. n8n Node Install the official Iteration Layer community node from npm. MCP Server Expose Iteration Layer tools to AI agents and coding assistants. Agent Skills Install ready-made skills for Claude Code and agent workflows.
Overview APIs Workflows SDKs Agent Tools Agent Frameworks Chat UIs API Reference Billing Trust & Compliance
Resources

Blog

EU AI Sovereignty Belongs in the Workflow Layer

Sovereign AI is not only a model question. EU agencies need controlled document workflows from intake to generated output.

Discover & Learn

Partner Program Build compliant client workflows with Iteration Layer. Changelog Follow product updates and new workflow capabilities. Security Review public security posture and controls. About Learn who is building Iteration Layer.

Benchmarks & Datasets

OCR Benchmark Review OCR evaluation results now. Dataset explorer support can slot in here next.
Pricing
Login Get Started

Security

Security reviews should not slow down AI workflow launches

Iteration Layer gives security and legal teams direct answers for file, website, image, and document workflows: where data is processed, what is retained, which subprocessors are involved, and which controls protect API access.

Built for security teams that need direct answers

Sensitive AI workflows should not create a new vendor review for every OCR, PDF, image, or website-processing step. Iteration Layer keeps the workflow on one EU-hosted runtime with one security posture to review.

EU-hosted workflow processing

Core application and processing infrastructure runs in European data centers, with provider-scope ISO 27001 and BSI C5 evidence documented for procurement reviews.

Zero processing-data retention

Uploaded files, fetched website content, and processing outputs are handled transiently and are not persisted after the request completes.

No model training

Customer content is never used to train, fine-tune, or improve AI models, whether operated by Iteration Layer or by subprocessors.

Hashed API credentials

Plaintext API keys are shown once at creation. After that, Iteration Layer stores only the hash needed to verify requests.

Documented retention

Usage records are retained for 90 days and automatically deleted. Account deletion and GDPR rights timelines are documented publicly.

Customer DPA

A Data Processing Agreement is available for customers and documents security measures, subprocessors, retention, and transfer mechanisms.

European by design

Your data is processed on EU-hosted infrastructure and never stored beyond temporary logs. Zero data retention, GDPR-compliant workflows, and a Data Processing Agreement are available for every customer. Learn more about our security practices .

EU-hosted core processing

Application and processing infrastructure runs in Europe, with provider-scope ISO 27001 and BSI C5 evidence documented for procurement reviews.

Zero data retention

Customer files and processing results are not stored after the request. Usage logs are retained for 90 days and automatically deleted.

Clear answers for security teams

Give reviewers the answers they need up front: where files are processed, what is retained, which subprocessors are involved, and how AI inputs, outputs, review gates, and audit records move through each workflow.

Trust and Compliance EU Hosting Responsible AI Use Security Reference

Frequently asked questions

Where should a security review start?
Start with Trust & Compliance, then use the security reference, Privacy Policy, and Data Processing Agreement for the exact evidence your reviewer needs.
Is Iteration Layer GDPR-compliant?
Yes. Iteration Layer is operated from Spain, processes core workflow data on EU-hosted infrastructure, publishes a subprocessor list, and offers a DPA to customers.
Which certifications are available?
Iteration Layer does not currently provide a SOC 2 report or an ISO certificate for Iteration Layer as an organization. Iteration Layer runs on certified European infrastructure with provider-scope ISO 27001 and BSI C5 evidence.
Do you store uploaded files or fetched website content?
No. Submitted content is loaded for the request, processed, and discarded. Usage records are retained for 90 days for accounting, abuse prevention, and support.
Is customer content used for model training?
No. Customer prompts, files, fetched websites, and generated outputs are not used to train, fine-tune, or improve AI models.
How are API keys protected?
Plaintext API keys are shown once at creation. After that, Iteration Layer stores only the hash needed to verify future requests.
Which documents can be shared with security reviewers?
Share Trust & Compliance, Security reference, Privacy Policy, and Data Processing Agreement. Those pages cover processing boundaries, subprocessors, retention, and legal processor terms.
Where can vulnerabilities be reported?
Send vulnerability reports to security@iterationlayer.com. Reports are acknowledged within 48 hours.

Build your first workflow in minutes

Chain our APIs into a workflow you can test with your own data during the 7-day trial.

Start 7-day trial
Zero data retention Made & hosted in the EU 100 trial credits