SkyAIAppSkyAIApp
Get started
Back to Product
🛡️Enterprise Module

Enterprise Guardrails

Enterprise-grade security, compliance, and governance. SSO integration, fine-grained permissions, audit logs, PII protection for the most demanding enterprises.

Contact SalesSecurity Whitepaper
SOC 2
Readiness pack
GDPR
DPA path
99.99%
SLA Guarantee
24/7
Security Monitoring

Security Architecture

👥UsersSSO/SAMLIdentity ProviderRBAC EngineOktaAzure ADGoogleAPI Gateway🔍 PII DetectionEmail • Phone • SSN • CC⚡ ProcessingModel Router • Runtime📝 Audit LogsImmutable • ExportableData Layer🏢Tenant IsolationTenant A | B | C🔐Encrypted StorageAES-256 • TLS 1.3🌍 Data ResidencyUS-East • EU-West • AP-NE📤 SIEM Integration: Splunk • Datadog • SumoSOC 2GDPRHIPAAPCI DSSMulti-layer security: Auth → Authz → Processing → Storage

Enterprise Capabilities

🔐

SSO/SAML Integration

Support Okta, Azure AD, Google Workspace, and more. Auto-revoke access when employees leave.

👤

Fine-Grained RBAC

Role-based access control. Set permissions by project, environment, API endpoint. Custom roles supported.

📝

Audit Logs

All operations traceable. Export logs to SIEM. Meet SOX, HIPAA audit requirements.

🔍

PII Detection & Redaction

Auto-detect sensitive info in prompts. Support redaction, blocking, or alerting policies.

🏢

Tenant Isolation

Complete data isolation between tenants. Dedicated deployment and private cloud options available.

🌍

Data Residency

Specify data storage regions. European data stays in Europe, meeting GDPR requirements.

Compliance material status

SOC 2 Type IIIn Progress
Control map and readiness worksheet available for diligence
GDPRReady
DPA, data-subject request flow, and EU-only path
HIPAAAvailable
BAA template available for eligible enterprise customers
ISO 27001In Progress
Information security management
PCI DSSReady
Payment data handled by PCI-scoped processors
SOXSupported
Audit logs meet requirements

Configuration Example

enterprise-config.ts
// SkyAIApp Enterprise - Security Configuration
import { SkyAI } from '@skyaiapp/sdk';

const client = new SkyAI({
  apiKey: process.env.SKYAI_API_KEY,
  
  // Enterprise security settings
  enterprise: {
    // SSO/SAML configuration
    sso: {
      provider: "okta",
      domain: "mycompany.okta.com",
      enforced: true,  // All users must use SSO
    },
    
    // PII detection and handling
    pii: {
      detection: {
        enabled: true,
        types: ["email", "phone", "ssn", "credit_card", "address"],
      },
      action: "redact",  // "redact" | "block" | "alert"
      alertWebhook: "https://mycompany.com/security-alerts",
    },
    
    // Data residency
    dataResidency: {
      region: "eu-west-1",  // Data stays in EU
      replication: false,   // No cross-region replication
    },
    
    // Audit logging
    auditLog: {
      enabled: true,
      retention: "7y",  // 7 year retention for compliance
      export: {
        destination: "s3://mycompany-audit-logs/skyai/",
        format: "json",
      },
      siem: {
        provider: "splunk",
        endpoint: "https://splunk.mycompany.com/api",
      },
    },
    
    // Access control
    rbac: {
      defaultRole: "viewer",
      customRoles: [
        {
          name: "ml-engineer",
          permissions: ["models:read", "models:deploy", "traces:read"],
        },
      ],
    },
  },
});

// All API calls now enforce enterprise policies
const response = await client.chat.completions.create({
  model: "gpt-5.5",
  messages: [{ role: "user", content: userInput }],
  // PII in userInput will be automatically detected and handled
});

Composite review scenarios

The scenarios below express common regulated-industry review language and material needs; they are not public customer endorsements.

Financial Services

Reviewers need to replay policy, cost, PII handling, and audit export for every model call.

🛡️ SOX / PCI review path
Healthcare

POC review needs the BAA template, PHI-field handling, and trace-retention policy confirmed before launch.

🛡️ BAA template + PHI controls
Government

Residency, SSO integration, and model-provider allowlists are prerequisites before technical review.

🛡️ Data stays in designated regions, integrates with govt IdP
Large Enterprise

Platform teams need access isolated by project, environment, and tool permission scope.

🛡️ Custom roles, project-level permission isolation

Enterprise SLA

99.99% Uptime
< 52 minutes downtime/year
Credits guarantee
24/7 Support
Dedicated Customer Success Manager
1-hour response
Security Incidents
Notification within 24 hours
Root cause analysis

Built for Enterprise

Talk to our enterprise team to learn how to accelerate AI adoption while meeting security and compliance requirements.

Book DemoDownload Security Whitepaper
Enterprise Guardrails - SkyAIApp — SkyAIApp