Solutions · Enterprise

AI support your security team will sign off on

Automation is only useful at scale if you can prove it stayed inside the lines. Airclou Helpdesk gates every irreversible action, records every AI run end to end, and grounds every draft in your own data — so the leverage comes with a control surface your reviewers can actually sign.

Tenant isolation · TLS everywhere · Full audit trail

Control, made visible

Bounded autonomy, not a black box

The AI does the work; you keep the authority. Every action runs inside limits you set, waits at a gate when it should, and lands in an audit trail a reviewer can read.

Every irreversible action waits at a gate

The AI agent can verify a duplicate charge and prepare the refund — but the refund itself parks at an approval a named person owns. Nothing money-moving or state-changing happens without an explicit, logged decision.

  • Approve or reject with the full context attached
  • Money and state changes never auto-execute
  • Every decision recorded with who and why

Autonomy inside an envelope you define

Set exactly which reply kinds the AI may send alone and cap what it can do — a maximum refund amount, a live-money acknowledgment, the actions it's cleared for. Everything outside the envelope escalates. The AI never widens its own authority.

  • Per-action allow-lists and hard amount caps
  • Live-money writes require a deliberate acknowledgment
  • Idempotent execution — a retry can never double-run

Grounded, cited, and fully auditable

Every draft is written from your own articles and the customer's live account data, with sources attached — never invented. And every run is recorded end to end: what the AI read, what it drafted, what it did. A compliance review gets a complete record, not a scrolled-away log line.

  • Grounded in your knowledgebase and systems of record
  • Sources cited on every draft
  • End-to-end run history, queryable for audit

Governance & security

The controls a security review asks for

Isolation, least privilege, and a complete audit trail are how the product is built — not an add-on you configure after the incident.

Approval gates & envelopes

Bound what the AI may do alone; everything irreversible or over a cap waits for a named approver.

Full audit trail

Every AI run recorded end to end — read, drafted, done, approved — and queryable for review.

Roles & permissions

Grant each role the narrowest access that does the job — scoped in the product, scoped in the data.

Tenant isolation

Every tenant is scoped at the data layer — a hard boundary, not a shared table with a filter.

Encryption & least privilege

TLS on every connection; scoped roles and keys for every service — no shared superuser accounts.

API & systems of record

Ground drafts and actions in Stripe and your own product data through documented, scoped APIs.

Common questions

What security and ops teams ask us first

How do we control what the AI is allowed to do on its own?

You define the envelope: which reply kinds the AI may send alone, which actions it may take, and hard caps like a maximum refund amount. Anything outside the envelope — anything irreversible or over a limit — parks at an approval gate for a named person. The AI never widens its own authority.

Is every AI action auditable?

Yes. Every run is recorded end to end — what the AI read, what it drafted, what it did, who approved it, and why. The trail is queryable, so a security or compliance review has a complete, honest record of every automated action, not a log line that scrolled away.

How is our data isolated and protected?

Every tenant is scoped at the data layer, every connection is encrypted with TLS, and services and staff run on least-privilege access — scoped roles, scoped keys, no shared superuser accounts. We handle personal data in line with GDPR. See the Security page for the full description.

Can a retry double-execute a refund or a plan change?

No. Irreversible actions carry an idempotency key, so a re-run — automated or human — can never double-charge, double-refund, or duplicate a change. Money and state-changing paths fail closed and escalate to a person rather than retrying into the void.

Get started

Leverage, with the controls intact

Bring your security review. We'll walk through the gates, the audit trail, and the isolation model on your own requirements — then run a scoped pilot on real tickets.

Scoped pilot · Security review welcome