Security & Trust

Built to be trusted
with your operations

You’re handing an agent access to client data, email, and money. Here’s exactly how we make sure it never acts without you — and never leaks what it sees.

Control by design

Human approval on every action

Nothing leaves your systems without a person approving it. The agent proposes; a human decides. High-risk actions always wait; low-risk ones can auto-complete only where you allow it.

Full audit trail

Every action, decision, and data source is logged and traceable. You can answer "who did what, when, and why" for any action the system has ever taken — the record your compliance and audit teams need.

Shadow mode before anything is live

Every agent runs silently for weeks first — reporting what it would do without doing it. You see its judgment on your real data before it touches anything, so trust is earned, not assumed.

Least-privilege access

The agent connects only to the systems you approve, with the narrowest scopes those tools allow. Access is reviewable and revocable at any time; connections can be cut in one place.

How we handle your data

The short version: least access, encrypted everywhere, never used to train models.

Your data is not used to train models

We do not train models on your data, and we use model providers under agreements that prohibit training on your inputs. Your business context stays your business context.

Encrypted in transit and at rest

All data is encrypted in transit (TLS) and at rest. Credentials and tokens for connected systems are stored encrypted and never exposed in logs.

Scoped, revocable integrations

Connections use each provider’s official OAuth and API scopes. You grant access per system, review what’s connected, and revoke instantly — no standing keys you can’t see.

Data minimisation

The system pulls only the data an action needs, and retains only what’s required to keep your context in sync. You decide what sources are connected and can disconnect any of them.

Questions your compliance team will ask

What happens if the AI makes a mistake?+

It can’t act unilaterally on anything that matters. Every consequential action goes through an approval queue where a human sees the reasoning, the confidence, and the sources before approving. Mistakes are caught at review, not in production — and every decision is logged, so nothing is silent.

Do you train AI models on our data?+

No. We don’t train models on your data, and we use model providers under terms that prohibit training on your inputs. Your data is used only to do the work you asked for.

How do you access our systems?+

Through each tool’s official OAuth and API, with the narrowest scopes that tool offers, and only for the systems you explicitly connect. You can review every connection and revoke access at any time.

Can we see everything the agent has done?+

Yes. Every action, the reasoning behind it, and the sources it checked are logged and traceable. This is the audit trail your compliance team needs — you can reconstruct any decision at any time.

How do you roll out without risking our operations?+

We start in shadow mode: the agent watches and reports what it would do, without doing it, for weeks. Only once you trust its judgment on your real data do we turn on the approval queue — and even then, high-risk actions always wait for a human.

Where does our data live and who can see it?+

Data is encrypted in transit and at rest, and access follows least-privilege principles. We’re happy to walk your security or compliance team through our specific data-handling and residency arrangements on a call.

Want the detailed version?

We’ll walk your security or compliance team through data handling, access, and audit — on a call, with your questions.

Talk to us about security