Enterprise

Governance that ships with your team,
not above it.

Turn on Gateway when CISO asks. Kill switch, policy enforcement, SSO, audit log, EU residency — all running on the same platform your team already uses daily.

Contact sales →See the team layer first

Gateway

In-path enforcement, opt-in per workspace.

Policy engine

6 policy types: model access, spend limit, rate limit, content filter, data routing, time-based access. Hot-reload, priority-ordered, denial reasons in response.

Kill switches

4 levels: global → vendor → team → model. Instant propagation. Audit log entry on every toggle. Reversible with one click.

Data routing

Regional pinning per workspace. PII redaction before egress. Vendor allowlists per team.

Circuit breaker

Automatic failover on 3 consecutive failures. Fallback chain: primary → secondary → local. Per-vendor independent state.

Layer 3 · Govern

Team health at a glance

Five metrics that tell you if your team is using AI well — not just using it a lot.

78%

AI Adoption Rate

↑ 12%

64%

Knowledge Sharing

↑ 8%

82%

Context Coverage

↑ 5%

91%

Cost Efficiency

↓ 3%

95%

Governance Health

→ 0%

Compliance & trust

Built so the defaults pass review.

✓

EU AI Act

Article 50 transparency, GPAI model documentation, risk classification per workspace.

✓

SOC 2 Type I

Q4 2026 target. Controls framework live today. Design partners get pre-report access.

✓

GDPR

EU data residency (eu-west, ap-southeast). Right to erasure. DPA on request.

✓

Audit log

Tamper-evident append-only. Every config change, every visibility toggle, every policy decision. CSV/JSON export.

✓

Data retention

Configurable per tier. 7-day minimum Starter, 1-year Enterprise default, custom available.

✓

Zero trust

Every request authenticated. No bypass path on Gateway tier. Parameterized SQL, SSRF-blocked, ReDoS-safe.

Deployment

Your cloud. Your keys. Your call.

Docker Compose

Reference deployment. Maiife + Ollama + optional vLLM.

On-prem

Kubernetes helm chart. Your cloud, your VPC, your keys.

Air-gapped

No outbound telemetry. Local models only. Registry on internal mirror.

Migration path

Observer → Gateway, without re-onboarding.

Your workspace, users, context, and registry come with you. No data migration, no re-auth, no downtime.

Today

Your team runs on Observer. Context, memory, registry — no in-path traffic.

Turn on Gateway per workspace

Flip in console. Same workspace ID, same users, same registry. No re-onboarding.

Policies go live

Your existing workspace settings become enforced policy. Kill switch, rate limits, routing — all active.

Audit + compliance

Every request now logged with policy decision. SSO, EU residency, SOC 2 controls turn on.

Ready when your CISO is.

Book a 30-minute conversation. We'll walk through your current setup and show you exactly what turning on Gateway looks like.

Contact sales →Book a call

Governance that ships with your team,not above it.