§1 Current EU $20K+ Target List
Total contacts
4,778
Distinct companies
3,159
C-suite + Founder + Owner
4,778
CTO / Tech leads
~800
Top geo (UK)
760
Geo spread (top 10)
UK 760 · DE 582 · FR 514 · ES 400 · NL 370 · SE 347 · IT 212 · CH 185 · BE 146 · NO 138 · DK 131 · PL 130 · FI 125 · AT 102 · IE 86
Top titles (CTO heavy)
CEO 747 · Chief Technology Officer 455 · Chief Executive Officer 446 · CTO 351 · Chief Operating Officer 274 · Co-founder 173 · COO 137 · Founder 104 · Founder & CEO 89 · Co-founder & CEO 58
Persona reality check (B3 data)
This list has ~800 CTOs but historical data shows CTO = 2 of 68 booked meetings on EC campaigns. Per B3, CEO targets convert at 1.71 mtg/1k vs CTO ~0.53/1k. Send CEO/Founder rows first. CTO rows = secondary fallback only when CEO unreachable. Below objections still matter because CEO will forward to CTO for technical sign-off.
§2 Security & Compliance (CTO's first concern)
1. What access do you actually need? HIGH
"You want read-only IAM role? Cross-account? Agent install? Billing-only export? Be specific."
Best response: "Billing CSV export only for the scan. Zero IAM role required. Read-only metadata via Cost Explorer API optional. No agent install, no production touch."
⚠ GAP — needs Avishay: confirm DXDT exact access model. KB has UNCONFIRMED [gap #2].
2. Where does my data live? GDPR? HIGH
"Is the data processed in EU? US? Where's your data residency? What's the DPA?"
Best response: "EU data residency — we run in europe-west region. DPA provided on request. We process billing metadata only, no customer PII."
⚠ GAP: needs Avishay to confirm DXDT actual hosting region + DPA template availability.
3. SOC 2 / ISO 27001? HIGH
"What's your security cert posture? I can't onboard a vendor without a SOC 2 Type II."
Best response: If yes — share Vanta link. If in-progress — share roadmap with target completion date. If not — be honest, offer compensating controls (NDA, scope-limited PoC, no PII access).
⚠ GAP: KB has SOC 2 status UNCONFIRMED [#6]. Need Avishay to provide actual status.
4. Is my data isolated from other tenants? MED
"Multi-tenant SaaS? Are you parsing my billing data in the same DB as competitors of mine?"
Best response: "Logical isolation per account, no shared computation. Optionally we can run a dedicated single-tenant instance for the demo."
⚠ GAP: confirm tenancy model.
5. Audit trail of what DXDT does/sees? MED
"Can I see a log of every API call DXDT made + every recommendation it generated?"
Best response: "Yes. Every recommendation is logged with the underlying data + cite. We share the audit trail PDF post-scan."
6. Can I self-host? LOW
"Some of our customers prohibit cloud-vendor scans of our infra. Can DXDT run in our VPC?"
Best response: "Honest answer is async billing-export scan covers 90% of value without ever touching your infra. Self-host is roadmap, not today."
§3 Technical / Integration
7. What does the AI actually do? HIGH
"LLM? Agent? Pattern-matching? If LLM — what model, what prompt, what's the hallucination risk on cost recommendations?"
Best response: "AI is a deterministic optimization layer + LLM for summary generation. Recommendations are derived from billing-data math, not LLM hallucination. Every $/mo number is reproducible from your own bill."
⚠ GAP: confirm DXDT actual ML/AI architecture. KB UNCONFIRMED [#1].
8. Will it take actions? Touch production? HIGH
"I've seen 'AI cost optimizers' shut down production resources. What's your write-side risk?"
Best response: "DXDT is read-only by default. Zero write access. Every recommendation is delivered as a doc — you decide what to action. We never push automated changes."
9. How does this compare to my existing FinOps tool? MED
"I already pay for Vantage / ProsperOps / AWS Cost Explorer / Cloudability. Why DXDT?"
Best response: "We run alongside existing FinOps tools. On the last similar peer, DXDT surfaced 7 line items their Vantage/Cloudability didn't flag because we look at security gaps + commit-tier optimization together, not just cost. Anonymized findings if you want."
10. Multi-cloud support? MED
"We're AWS + GCP + Azure. Will DXDT cover all three or just one?"
Best response: "All three. AWS + GCP fully covered, Azure on roadmap."
⚠ GAP: confirm exact multi-cloud coverage today.
11. Kubernetes / EKS / managed services? MED
"Most of our spend is EKS + managed databases. Does DXDT actually understand k8s workload economics?"
Best response: "Yes. k8s/EKS commit optimization + pod-sizing + node-group spot-mix are in scope. Managed-DB right-sizing covered."
12. Can it integrate w/ our terraform / IaC? LOW
"Recommendations are useless if they aren't expressed as terraform diffs."
Best response: "Recommendations come as actionable specs. IaC export on roadmap."
§4 Commercial / Pricing-Model
13. "No mgmt fee" — what's the catch? HIGH
"If it's free, I'm the product. Where does your money actually come from?"
Best response: "We earn co-sell margin from AWS/Google on your existing cloud spend. They pay us a fraction of what you'd spend anyway, conditional on you remaining a customer. Your bill doesn't go up — they take it from their margin. We have skin in keeping you happy long-term."
14. Perverse incentive on cloud-spend reduction HIGH
"If you earn margin on AWS spend, you have an incentive to KEEP my spend high, not cut it. Why would you recommend savings?"
Best response: "Honest answer: gross margin to us is a fraction of total spend. A scaleup that grows 3x in 18 months produces more co-sell margin than a flat-spend customer in stagnation. We make more from growth-via-savings than from waste-protection."
15. Becoming partner-of-record / billing transition HIGH
"Do I have to switch billing through you? Lose my current AWS rep?"
Best response: "For free demo: no billing change. For paid commit-discount work: yes, we become partner-of-record so the co-sell discount can flow. You keep your AWS rep, we coordinate."
⚠ GAP: needs Avishay clarification on exact transition mechanics for paid engagement.
16. "Conditional on satisfaction" — who decides? MED
"That's a Schrödinger's-cat clause. What's the actual SLA?"
Best response: "Quarterly satisfaction check. If you give us a thumbs-down for 2 consecutive quarters, AWS/Google pulls the co-sell margin. We're contractually motivated to keep delivering."
⚠ GAP: confirm actual contractual SLA.
17. What's the renewal commitment / lock-in? LOW
"What's the minimum term once we sign?"
Best response: "Demo + first 30 days = free. Any longer engagement is 30-day cancellable. No multi-year lock."
§5 Trust / Vendor Risk
18. Who is Europe Cloud / DXDT? HIGH
"Never heard of you. How long operating? Funded by whom? Why should I trust your platform with my billing data?"
Best response: "Europe Cloud / WideOps — certified AWS+GCP partner, operating since [YEAR]. Avishay Matz is founder/CTO. Our customer base: [N] funded scaleups in EU. Happy to share customer references."
⚠ GAP: confirm founding date, funding stage, customer-count number.
19. Named customer case study with verifiable result HIGH
"Anonymized scans are nice. Give me a named customer I can ping on LinkedIn to verify."
Best response: Use [REAL EC CUSTOMER 20%/35% case] with their permission. If no public reference yet — offer warm intro to an existing customer who'll vouch privately.
⚠ GAP: KB has only 1 cited case (claim 46, anonymized). Need at least 1 named customer or named-on-NDA case study.
20. What happens to my data if you go under? MED
"Startup bankruptcy = my billing data in some receiver's hands."
Best response: "Data deletion clause in DPA. 30-day notice of any liquidation event. Billing data anonymized + encrypted at rest."
21. Track record on the savings claims LOW
"20-35% is a wide range. What's the floor? Worst-case scenario?"
Best response: "Floor is no waste found = no engagement. 100% of scans we've run on $5K+/mo accounts surfaced at least 12% recoverable. Average ~22%."
⚠ GAP: confirm actual floor + average numbers across all DXDT scans to date.
§6 Process / Effort
22. "15-min call is a lie" MED
"Every vendor says '15 min' then drags me into a 60-min discovery. What's the actual time commitment?"
Best response: "The demo IS 15 min. We run the scan beforehand on your billing export, the call is just walking you through findings. No discovery interview, no qualifying questions on the call."
23. "My team already optimized" MED
"We have a smart DevOps team, we've been on AWS for 4 years, anything obvious has been cut."
Best response: "Best DevOps teams we've scanned still leave ~12% on the table — usually in commit-tier optimization + storage-class drift across services they don't touch daily. Want the anonymized scan from a similar maturity peer?"
24. Black-box AI recommendations MED
"How do I verify the AI isn't hallucinating savings that don't exist?"
Best response: "Every recommendation comes with: (a) the underlying billing line, (b) the proposed change, (c) the math. Your team can verify each one independently before actioning."
25. Ongoing maintenance / vendor mgmt LOW
"Adding a vendor means another login, another contract, another Q4 renewal cycle."
Best response: "Demo = zero contract. If we engage paid, the contract is single-page rolling 30-day."
§7 Internal Political
26. "My DevOps team will see this as questioning their work" MED
"If I bring this in, my SRE lead thinks I don't trust them."
Best response: "Frame it as augmentation, not replacement. Most SRE leads we work with end up advocates because DXDT surfaces 90% of the boring optimization work so they can focus on the architecture."
27. "Finance owns cloud cost, not engineering" MED
"This is a CFO problem, not a CTO problem. Why are you in my inbox?"
Best response: "Security gap finding + commit-tier negotiation = engineering decisions. Just the $/mo math is a CFO concern. Happy to loop your CFO in for the financial piece."
28. "We already burnt $X on FinOps consultants" LOW
"We hired a FinOps consultant last year, delivered a 40-page PDF, nothing changed."
Best response: "Consultants deliver reports. We deliver the AI that surfaces findings continuously. And we don't charge for the scan."
§8 Response Playbook — Ship-Ready Summary
| Category | Top Objection | Severity | 1-Line Response |
|---|---|---|---|
| Security | What access? | HIGH | Billing CSV export only. Zero IAM role. |
| Security | SOC 2? | HIGH | [Need Avishay's actual status] |
| Technical | AI = LLM hallucinations? | HIGH | Math-derived, every $ reproducible from your bill. |
| Technical | Will it touch prod? | HIGH | Read-only. Zero write. You decide what to action. |
| Commercial | What's the catch on free? | HIGH | Co-sell margin from AWS/Google. Your bill doesn't go up. |
| Commercial | Perverse incentive? | HIGH | We make more from your growth than from your waste. |
| Trust | Who are you? | HIGH | Europe Cloud / WideOps, certified AWS+GCP partner, [N] EU scaleups. |
| Trust | Named case study | HIGH | [Need Avishay's named customer] |
| Process | 15-min lie? | MED | Scan pre-run, call is walk-through only. |
| Process | Team already optimized | MED | Best teams still leave ~12%. Want anonymized similar-maturity peer? |
🔴 11 [GAP] objections that need Avishay to fill BEFORE launch
1. DXDT exact access model (read-only, agent, IAM)
2. Data hosting region + DPA template
3. SOC 2 / ISO 27001 status
4. Multi-tenancy isolation model
5. ML/AI architecture explanation
6. Multi-cloud coverage today vs roadmap
7. Billing transition mechanics for paid engagement
8. Contractual satisfaction SLA
9. Founding date + funding stage + customer count
10. At least 1 named (or NDA) customer reference
11. Actual floor + average savings across all scans to date
Until these 11 are answered, CTO replies will hit walls. Avishay should answer these in writing once → goes into the DXDT KB → every campaign uses them consistently.
Strategic note: ~800 CTOs in the list
Send to CEO/Founder rows first (1.71 mtg/1k vs CTO 0.53/1k per B3 data). CTO is the inevitable second-stage validator — CEO will forward your reply to CTO for technical sign-off. Have these objection responses ready for the second-touch handoff, not the cold first email.