Agents you can trust

Prompt injection defense

External inputs — email replies, Slack messages, webhooks, and fetched data — are tagged with their trust level before reaching your agent. The model is always aware of what came from outside and treats it accordingly. Hostile content can't silently hijack agent actions.

Human-in-the-loop approvals

Agents pause and ask for approval before taking sensitive or irreversible actions. Set standing allow/deny rules per tool, or require a human sign-off every time. You stay in control of what runs autonomously and what doesn't.

Access controls & spend limits

• Roles and permissions for teams
• Per-agent tool allowlists — each agent only touches what you say it can
• Admin spend controls cap AI costs before they run away

Encryption

• In transit: TLS 1.2+ on all connections
• At rest: AES-256 with AWS KMS, per-tenant key isolation
• Credentials: OAuth tokens and API keys encrypted at rest — bring your own AI provider keys and requests go directly through your accounts

No model training

Your conversations, files, and connected app data are never used to train AI models. We use API-tier access with all providers, which contractually prohibits training on your inputs and outputs.

Compliance

• GDPR: Full compliance for EEA, UK, and Swiss users. Choose your data region at onboarding.
• SCCs: Standard Contractual Clauses for international transfers
• DPA: Data Processing Agreement available