Enterprise
Built for organizations that don't compromise
Enterprise-grade security, compliance and governance. So automation never comes at the expense of safety.
Security
Security by design, not as an afterthought
Every part of the platform is designed with security as its starting point. From encryption to access control, from audit trails to data separation.
AES-256 encryption
All data is encrypted at rest and in transit over TLS 1.2+. Secrets and API keys live in Azure Key Vault.
Role-based access control
Token-based authentication with configurable validity. Three permission levels (use, edit, manage) per organization.
Full audit trail
Access logs, request logs and AI-interaction logs. Every action is traceable to user, time and organization.
EU-hosted on Azure
All data, backups, logs and LLM calls stay inside the EU. Azure West Europe by default, LLM via Azure Sweden Central.
Backups every 8 hours
Instant-restore copy (kept for 7 days, ~30 min recovery) plus daily snapshots (kept for 30 days).
Data separation
Strict per-organization separation at the API level. Users only see data from organizations they have access to.
Compliance & Governance
Meeting the strictest requirements
From GDPR to the EU AI Act. Our approach is built around the regulations enterprise organizations actually have to deal with.
GDPR-compliant
- Minimal PII: name, username and email only
- Configurable retention per workflow
- Data Processing Agreement (DPA) available by default
- Data export at any time, deletion within 30 days
- All data stored inside the EU
EU AI Act-ready
- Human-in-the-loop toggle per process step
- Full traceability of AI decisions
- Version-controlled prompt management via GitHub
- Real-time monitoring dashboards for accuracy and exceptions
- Risk management with configurable approval steps
Governance & SLA
- 99.5% uptime guarantee during business hours
- Structured incident management (RACI model)
- ISO 27001 certification in progress
- NIS2-compliant design
- Structured exit process with data export (CSV/JSON)
Technical architecture
Under the hood
A snapshot of the technical infrastructure, hosting and security measures the platform is built on.
Bring Your Own LLM
Every organization manages its own LLM endpoints. You pick the model per agent. You decide which sub-processors are in play.
Frequently asked questions
Enterprise FAQ
Where is the data stored?
All data is hosted on Microsoft Azure in the West Europe region. LLM services run in Azure Sweden Central. All data, backups, logs and LLM calls stay inside the EU. For organizations with additional security requirements, we offer hosting inside their own Azure tenant.
How is data separated between organizations?
All data is tied to a specific organization. Every API request requires the right permission (use, edit, manage) for that organization. Users only see data from organizations they have access to. Roles are assigned exclusively by an AgentsLab Administrator.
Are prompts and AI output stored?
Yes, by default all prompts and outcomes are stored for logging and quality assurance. Retention periods are configurable per workflow. Customers can request deletion or set a custom retention policy.
Is a DPA available?
Yes, both a standard Data Processing Agreement (DPA) and general terms are available on request. We operate in line with GDPR Article 33 for breach notifications.
What's the exit process?
Customers can export their data at any time in CSV or JSON format. After contract termination, all customer data is securely deleted from our systems within 30 days.
What SLA do you offer?
99.5% uptime guarantee during business hours, excluding scheduled maintenance and third-party outages. P1 incidents outside business hours are picked up within 1 hour, with a maximum resolution time of 8 hours. Every SLA includes 4 hours of support per month.
Want to see how we meet your security requirements?
We're happy to share our full Security Q&A and DPA. Book a call.
Get in touch