Solutions · Enterprise
AI support your security team will sign off on
Automation is only useful at scale if you can prove it stayed inside the lines. Airclou Helpdesk gates every irreversible action, records every AI run end to end, and grounds every draft in your own data — so the leverage comes with a control surface your reviewers can actually sign.
Tenant isolation · TLS everywhere · Full audit trail
Control, made visible
Bounded autonomy, not a black box
The AI does the work; you keep the authority. Every action runs inside limits you set, waits at a gate when it should, and lands in an audit trail a reviewer can read.
Every irreversible action waits at a gate
The AI agent can verify a duplicate charge and prepare the refund — but the refund itself parks at an approval a named person owns. Nothing money-moving or state-changing happens without an explicit, logged decision.
- Approve or reject with the full context attached
- Money and state changes never auto-execute
- Every decision recorded with who and why
Autonomy inside an envelope you define
Set exactly which reply kinds the AI may send alone and cap what it can do — a maximum refund amount, a live-money acknowledgment, the actions it's cleared for. Everything outside the envelope escalates. The AI never widens its own authority.
- Per-action allow-lists and hard amount caps
- Live-money writes require a deliberate acknowledgment
- Idempotent execution — a retry can never double-run
Grounded, cited, and fully auditable
Every draft is written from your own articles and the customer's live account data, with sources attached — never invented. And every run is recorded end to end: what the AI read, what it drafted, what it did. A compliance review gets a complete record, not a scrolled-away log line.
- Grounded in your knowledgebase and systems of record
- Sources cited on every draft
- End-to-end run history, queryable for audit
Governance & security
The controls a security review asks for
Isolation, least privilege, and a complete audit trail are how the product is built — not an add-on you configure after the incident.
Approval gates & envelopes
Bound what the AI may do alone; everything irreversible or over a cap waits for a named approver.
Full audit trail
Every AI run recorded end to end — read, drafted, done, approved — and queryable for review.
Roles & permissions
Grant each role the narrowest access that does the job — scoped in the product, scoped in the data.
Tenant isolation
Every tenant is scoped at the data layer — a hard boundary, not a shared table with a filter.
Encryption & least privilege
TLS on every connection; scoped roles and keys for every service — no shared superuser accounts.
API & systems of record
Ground drafts and actions in Stripe and your own product data through documented, scoped APIs.
Common questions
What security and ops teams ask us first
How do we control what the AI is allowed to do on its own?
You define the envelope: which reply kinds the AI may send alone, which actions it may take, and hard caps like a maximum refund amount. Anything outside the envelope — anything irreversible or over a limit — parks at an approval gate for a named person. The AI never widens its own authority.
Is every AI action auditable?
Yes. Every run is recorded end to end — what the AI read, what it drafted, what it did, who approved it, and why. The trail is queryable, so a security or compliance review has a complete, honest record of every automated action, not a log line that scrolled away.
How is our data isolated and protected?
Every tenant is scoped at the data layer, every connection is encrypted with TLS, and services and staff run on least-privilege access — scoped roles, scoped keys, no shared superuser accounts. We handle personal data in line with GDPR. See the Security page for the full description.
Can a retry double-execute a refund or a plan change?
No. Irreversible actions carry an idempotency key, so a re-run — automated or human — can never double-charge, double-refund, or duplicate a change. Money and state-changing paths fail closed and escalate to a person rather than retrying into the void.
Get started
Leverage, with the controls intact
Bring your security review. We'll walk through the gates, the audit trail, and the isolation model on your own requirements — then run a scoped pilot on real tickets.
Scoped pilot · Security review welcome