The OAuth puncture

Every named connector routes through US-domiciled cloud.

Notion, Gmail, Google Calendar, Microsoft Word, Microsoft Excel. Each is an OAuth-gated SaaS operated from US infrastructure. Building an on-prem LLM to talk to a cloud Notion is a coherence failure. The data is already off-prem; the model's residency does not improve the locality story.

·The coherence failure

if the workflow that drives the on-prem investment is the LLM reading Notion and drafting Gmail, the data is already off-prem before the model touches it

five for five

·Pattern A · keep the LLM internally consistent

restrict to genuinely on-prem data — file shares, local databases, internal wikis, code repositories; accept that cloud SaaS is out of scope

architecturally clean

·Pattern B · self-host the integration targets

Outline / AppFlowy / Affine for Notion; mailcow / Mailu for mail; Nextcloud Office or OnlyOffice for documents — significant operational burden at 10-person scale

rarely cost-justified

·Tool-calling fidelity at long context

open-weight BFCL v4 ≈ 85% vs frontier ≈ 95%; tool-call schema fidelity degrades when system prompt is buried under 300k+ tokens of context

~10 pt gap

·Custom adapter work, if self-hosting

per non-trivial connector — OAuth/SSO plumbing and per-tool schema design dominate

AUD 5–25k each

SourceOn-prem frontier LLM briefing, §6 MCP and integrations. Server-location and auth claims taken from each connector's published documentation. Tenant residency for Microsoft 365 is configurable to Australia, but the Graph API control plane still routes through Microsoft's cloud regardless of tenant region — for the LLM-touches-document question, this is the binding fact.