Engineering

Principles

We build systems with measurable goals, short feedback loops, and disciplined execution. Our process favors clarity, iteration, and long-term maintainability over complexity and trend-driven design.
Outcome-Driven Development

Every project begins with explicit objectives. We optimize for real-world value, not feature volume.

Lean Iteration & Fast Feedback

We work in small, incremental releases to reduce risk and gather early customer feedback. Short cycles allow correction before complexity compounds.

Rapid Prototyping

Proof-of-concepts are developed quickly to validate technical feasibility and architectural direction before committing to full-scale implementation.

Value-Focused MVP

A minimum viable product must deliver meaningful value, not merely meet a checklist of requirements. An MVP should solve a real problem in production conditions.

Disciplined Experimentation

We test assumptions early and continuously. If a direction proves incorrect, we adjust quickly and deliberately.

Test-Driven & Verification-Centered Development

Testing is embedded throughout the lifecycle:

  • Unit tests for functional correctness
  • Integration tests for system interaction
  • Performance testing under realistic load
  • Edge-case and fault-injection testing
  • Security testing and threat modeling
Systems are not considered complete until they are verifiably reliable.
Documentation as a Living Artifact

Architecture decisions, APIs, and operational procedures are documented as the system evolves. Documentation changes with the code — not after it.

Security by Design

Security is integrated from the earliest architectural decisions and maintained throughout the lifecycle. We apply least-privilege principles, dependency scrutiny, and secure deployment practices by default.

Version-Controlled Source of Truth

All source code resides in version-controlled repositories. Changes are traceable, reviewable, and reproducible.

Automated Build & Deployment

Continuous integration and deployment pipelines automate build, test, and release processes to ensure repeatability and reduce human error.

Continuous Review & Refactoring

Periodic code reviews and systematic refactoring preserve clarity, performance, and long-term maintainability.

Operational Transparency

Work tracking remains lightweight but visible. We avoid bureaucratic overhead while maintaining accountability and traceability.

Observability by Default

Metrics, structured logging, and tracing are integrated from the start. Systems must be measurable in production.

Infrastructure as Code

Infrastructure definitions are version-controlled and reproducible, reducing configuration drift and deployment ambiguity.

AI-Augmented Engineering Workflow

We use AI tools to support software development, analysis, and documentation where appropriate. When confidentiality policies allow, we utilize secure cloud-based AI services to accelerate research, prototyping, and validation.

In environments requiring strict data isolation, we deploy locally hosted or air-gapped AI systems to ensure sensitive information never leaves controlled infrastructure.

AI is used as an assistive tool - not as an autonomous decision-maker. All outputs are reviewed, validated, and tested by engineers before integration into production systems.

Regulatory Compliance and European Standards

Engineering and product development within the European Union operates in a regulatory environment designed to ensure safety, privacy, and environmental responsibility. Modern engineering projects must consider not only technical performance but also compliance with a range of EU regulations and directives.

One of the most well-known regulatory frameworks is the General Data Protection Regulation (GDPR), which governs how personal data is collected, processed, and stored. Any system that processes user information—such as web services, cloud platforms, or connected devices—must ensure that personal data is handled transparently, securely, and with a clear legal basis. GDPR has effectively become a global benchmark for privacy and data protection regulation.

In addition to data protection rules, many physical products sold within the European Economic Area must comply with the CE marking framework. The CE mark indicates that a product meets essential EU requirements for health, safety, and environmental protection, and it allows products to be legally sold across the European market.

Depending on the product category, this may involve compliance with directives such as:

To demonstrate compliance, manufacturers typically perform risk assessments, testing, and documentation of the design and manufacturing process. The resulting technical documentation and Declaration of Conformity provide evidence that the product meets the relevant legal requirements.

Beyond CE marking and data protection, modern engineering projects may also need to consider emerging EU regulatory frameworks such as cybersecurity requirements, the General Product Safety Regulation (GPSR), and the upcoming EU Artificial Intelligence Act, which introduces risk-based compliance requirements for AI systems used in products and services.

At Sahlbom Oy, engineering principles include designing systems and products with regulatory compliance in mind from the start. Integrating regulatory considerations early in the design process helps reduce development risk, improves product reliability, and ensures that technologies can be deployed safely within European markets.

Drone Regulations and Unmanned Aircraft Systems (UAS)

Unmanned aircraft systems (UAS), commonly known as drones, are regulated within the European Union under a harmonized framework established by the European Union Aviation Safety Agency (EASA). These regulations define how drones may be designed, manufactured, and operated within EU airspace.

The primary regulatory framework is established by two EU regulations:

  • Commission Implementing Regulation (EU) 2019/947 – rules and procedures for the operation of unmanned aircraft
  • Commission Delegated Regulation (EU) 2019/945 – requirements for unmanned aircraft systems and third-country operators

These regulations introduce a risk-based operational model rather than regulating drones solely by weight. Drone operations are divided into three categories:

1. Open Category

Low-risk operations that do not require prior operational authorization. These typically involve smaller drones operating within visual line-of-sight and under defined altitude limits.

2. Specific Category

Operations that involve higher operational risk and therefore require a risk assessment and operational authorization from the national aviation authority.

3. Certified Category

High-risk operations comparable to traditional aviation activities. These may involve certification of the aircraft, the operator, and potentially the remote pilot.

For manufacturers and engineering teams developing drone technologies, compliance requirements may include:

  • CE marking and product conformity
  • Remote identification capability
  • Operational safety features such as geofencing or altitude limitations
  • Documentation and technical specifications required for UAS class identification
The regulatory framework

The regulatory framework aims to ensure that drone technology can be integrated safely into European airspace while supporting innovation in areas such as inspection, mapping, research, logistics, and autonomous systems.

When developing unmanned systems, regulatory considerations are integrated into the engineering process from the early design stage. Understanding operational categories, safety requirements, and airspace integration principles helps ensure that drone technologies can be deployed legally and safely within the European aviation ecosystem.

Official EU Regulations

A curious side effect of this framework is that drone regulation is one of the first a reas where aviation law started adapting to mass-produced autonomous machines, rather than traditional aircraft flown by trained pilots. In other words, Europe is quietly building the legal scaffolding for a sky filled not just with airplanes—but with robots - That is where we at Sahlbom Oy assist our partners for better tomorrow
Engineering principles
< PREV NEXT >
Close