OperativeOps
Enterprise Security

Enterprise-Grade Security. Your Data, Your Control.

Deploy on your infrastructure, bring your own models, and maintain full control over every byte of data. OperativeOps was built for organizations that take security seriously.

Deployment

Self-Hosted & On-Premise

Run OperativeOps entirely within your own infrastructure. Your data never leaves your network — not even temporarily.

  • Docker Compose for single-node deployments
  • Kubernetes Helm charts for multi-node clusters
  • Air-gapped installation packages available
  • Full parity with cloud features
  • Your team manages updates on your schedule
Deployment Options

Cloud (Managed)

Fastest setup

We host everything. SOC 2 compliant infrastructure.

Hybrid

Best of both

Agents run in our cloud, data stays in yours.

On-Premise

Maximum control

Everything on your hardware. Full air-gap support.

Supported Providers

OpenAI

GPT-4o, GPT-4o-mini

Anthropic

Claude 4, Sonnet

Groq

Llama 3.3, Mixtral

Azure OpenAI

Any deployed model

AWS Bedrock

Claude, Titan

Self-Hosted

Ollama, vLLM, TGI

Bring Your Own Model

Use Any LLM Provider

Do not be locked into a single AI provider. OperativeOps supports a provider-agnostic architecture — swap models without changing your workflows.

  • Switch providers per agent or per environment
  • Run fully offline with self-hosted models (Ollama, vLLM)
  • Use your existing enterprise AI agreements
  • No data sent to third parties when self-hosting

Data Protection

Encrypted Everywhere

Encryption at Rest

All data stored using AES-256 encryption. Database-level encryption with customer-managed keys (CMK) on enterprise plans.

  • AES-256 encryption standard
  • Customer-managed encryption keys
  • Encrypted backups
  • Secure key rotation

Encryption in Transit

TLS 1.3 for all API and agent communications. Certificate pinning available for on-premise deployments.

  • TLS 1.3 enforced
  • Certificate pinning support
  • mTLS for service-to-service
  • HTTP/2 with ALPN

Access Control

Fine-Grained RBAC

Six predefined roles with granular permissions. Integrate with your existing identity provider via SSO/SAML.

  • SSO/SAML 2.0 integration (Okta, Azure AD, OneLogin)
  • SCIM provisioning for automated user sync
  • IP allowlisting and session management
  • Audit logs for every access event
Role-Based Access Control

Owner

Full workspace control, billing, and member management

Admin

Manage agents, integrations, and team settings

Manager

View all agents and insights, manage team conversations

Member

Chat with agents, view dashboards and insights

Viewer

Read-only access to dashboards and reports

API-Only

Programmatic access with scoped permissions

Compliance

Compliance Roadmap

We are committed to meeting the highest standards for enterprise security and AI governance.

SOC 2 Type II

In Progress

Security, availability, and confidentiality controls audited by a third party.

ISO 27001

Planned

International standard for information security management systems.

GDPR

Compliant

EU data protection regulation. Data processing agreements available.

ISO 42001

Planned

AI management system standard for responsible AI governance.

AI Governance Dashboard

Audit Trail

Every agent query, response, and data access logged

Prompt Injection Detection

Multi-layer input sanitization and monitoring

Output Filtering

PII redaction, hallucination detection, tone guardrails

Data Lineage

Trace every insight back to its source documents

Usage Analytics

Token usage, latency, and cost tracking per agent

AI Governance

Responsible AI, Built In

Every interaction with OperativeOps agents is logged, auditable, and traceable. We protect against prompt injection, hallucination, and data leakage at every layer.

  • Full audit trails with exportable logs
  • Prompt injection prevention at input and output layers
  • Automatic PII detection and redaction options
  • Data lineage tracking for all agent insights
  • Role-based access to AI governance dashboard

Air-Gapped Deployment

For the most security-sensitive environments, OperativeOps supports fully air-gapped installations. No internet connectivity required after initial setup — run entirely offline with self-hosted LLMs.

Offline Installers

Pre-packaged Docker images and Helm charts

Local LLMs

Run Llama, Mistral, or any GGUF model locally

Signed Packages

SHA-256 verified installation packages

Ready to Secure Your AI Infrastructure?

Talk to our security team about your requirements. We will design a deployment that meets your compliance needs.