Dedicated regions, BYO-cloud, SAML & SCIM, fine-grained RBAC, customer-managed keys, and audit logs that satisfy auditors. Built for security, legal, and platform teams who can't afford surprises.
Annual third-party audits, mapped controls, and continuous monitoring. Trust report shared NDA-free, with sub-processor list always current.
TLS 1.3 in transit. AES-256 at rest. Customer-Managed Keys (BYOK) via AWS KMS, GCP KMS, or Azure Key Vault. Per-workspace key rotation.
SAML 2.0 with Okta, Entra, Google. SCIM 2.0 provisioning. Fine-grained role bindings down to a single workspace, agent, or API key.
Single-tenant clusters in your region, or full deployment into your AWS / GCP / Azure VPC. Zero shared compute, zero shared egress.
Every action signed and chained. Stream to your SIEM (Splunk, Datadog, Snowflake). Field-level redaction policies enforced server-side.
Financial-credit SLA, 15-minute response on Sev-1, named Customer Success engineer, and a private Slack channel with our on-call.
Pick the tenancy model that fits your security posture. Whatever you choose, the control plane, SDKs, and observability work identically.
Our default. Pooled compute, regional isolation, encryption at rest with our keys. Fastest to onboard.
Your own Ollagraph cluster in the region of your choice. Zero shared compute or egress. CMK by default.
We deploy Ollagraph into your VPC. Data never leaves your boundary. Air-gapped variants on request.
"Ollagraph replaced four vendors and our in-house headless-browser farm. We moved to a dedicated cluster in a week, hit our 99.99% SLA the day we cut over, and our CISO signed off in a single review."
We answer hard architecture questions in the first call. Bring your auditor — we'll send the trust report ahead of time so the second call is just signing.