AI agents on your Dolibarr, with human sign-off
AI Agents & Workflows for Dolibarr
AI agents take over the recurring work between email, PDF, ERP, and CRM. Dolibarr stays the system of record, every critical action is approved by a human and logged. Operated on infrastructure in the EU, designed for GDPR, the EU AI Act, and NIS2.
Discuss an Operational AI AuditWhat is AI Agents & Workflows for Dolibarr?
AI workflows for Dolibarr put AI agents on top of your existing Dolibarr installation. The agents read and write through the REST API and webhooks and handle tasks such as creating order data from a PDF as a draft, reconciling incoming invoices, or preparing quote drafts. The principle is prepare, then approve: the agent prepares, a human confirms, every action lands in the audit trail. Dolibarr stays the system of record and the GoBD-compliant register. Operation stays in the EU, and personal data is tokenized before any external AI call.
Service scope
- AI agents through the Dolibarr REST API and webhooks
- Prepare then approve: a human confirms critical steps (human-in-the-loop)
- Order capture from PDF, invoice reconciliation, quote drafts, status requests
- Inference in the EU region with zero data retention
- PII tokenization before any external call, a pseudonymization gateway based on Microsoft Presidio
- Audit trail of every agent action, designed for GDPR, the EU AI Act, and NIS2
The ERP stays the system of record
The agent prepares, the human approves. Dolibarr stays the GoBD-compliant register, and no agent bypasses the posting logic.
Data protection from the start
Operation in the EU, zero data retention, and PII tokenization before any external AI call. Identifiable personal data does not leave your perimeter in the clear.
Designed for EU regulation
GDPR, the transparency duty of the EU AI Act, and the network part of NIS2 are considered from the start, with a log as evidence.
What tasks does an AI agent handle in Dolibarr?
Typical candidates are tasks with high volume and clear rules: reading order data from a PDF and creating it as a draft, reconciling incoming invoices against purchase order and delivery note, preparing a quote draft from an inquiry, or answering recurring status questions from the systems. The Operational AI Audit shows which flows make sense first.
Does Dolibarr stay the system of record?
Yes. The agent prepares data, a human approves the critical steps, and Dolibarr stays the official, GoBD-compliant register. Every agent action is logged, so it stays traceable what happened and on what basis.
How does this fit GDPR?
Operation runs on infrastructure in the EU. Inference happens in an EU region with zero data retention, and personal data is tokenized by a pseudonymization gateway before any external AI call. Identifiable data does not leave your perimeter in the clear. A data processing agreement and, where needed, standard contractual clauses are part of it. The overall legal assessment stays with your data protection advisers.
What does the EU AI Act mean for AI agents?
The assistance agents described here fall into the transparency tier under Art. 50: every AI surface discloses that it is AI-assisted. The prepare-then-approve principle satisfies human oversight under Art. 14, and the log serves as evidence. The AI-literacy training duty under Art. 4 already applies, the transparency duties bind from 2 August 2026. High risk only arises if an agent makes decisions such as hiring, credit, or biometrics, which is not intended here.
Does NIS2 affect me?
NIS2 hits larger businesses and essential sectors first. As a managed-hosting provider, Anexum falls into the ICT-services sector in principle; today only the size threshold keeps us outside the direct duty. Through the supply chain under Art. 21, the requirements reach you by contract as soon as an in-scope customer is involved. The basis for that is already in place with us: multi-factor authentication, backups and recovery, encryption, and a reporting process. The Austrian NISG 2026 is fully in force from 1 October 2026.
What is Microsoft Presidio?
Presidio is an open-source framework by Microsoft (MIT license, since 2018, more than 9,000 GitHub stars) for detecting and anonymizing personal data in text. It runs on our own infrastructure and tokenizes names, addresses, account or ID numbers before a text goes to an external AI model. The mapping is reversible, so the answer can be reassembled with the real values. In practice, Presidio is the common tool for exactly this step.
Where do I start?
With the Operational AI Audit. We survey your cross-system manual work, assess the candidates, classify them against GDPR, GoBD, and the EU AI Act, and propose a bounded pilot with success metrics. You can find the self-assessment checklist on this page.
Related services
All in Managed DolibarrManaged Dolibarr Hosting
Your ERP runs without you becoming the server admin
Dolibarr Custom Module Development
Your process does not fit standard Dolibarr. Now it does.
DoliConstruct: Construction ERP on Dolibarr
ÖNORM calculation, time tracking, payroll, and stock in one system
AI Consulting for SMEs
Agent workflows integrated into your systems, designed for GDPR and the EU AI Act
Are you ready for
AI agents?
Process, data, governance, integration, and pilot. 48 checkpoints to assess whether your business is ready to put AI agents on top of your ERP and CRM. Enter your name and email and the download starts immediately. No newsletter.