Skip to content
For security & compliance

Built for the people who say no first.

Privileged admin audit and EU data residency are live today. Per-tool-call agent traces, redaction policies, SSO/SCIM, BYOK, and air-gapped deployments are labeled below as roadmap or design-partner controls.

Posture

Compliance is the floor, not the feature.

SOC 2
Control library mapped to Type II criteria; no Kommit SOC 2 badge yet
HIPAA
Admin audit is live; PHI redaction and BAA support are roadmap
GDPR
EU operations and EU-resident model routing posture
EU AI Act
Per-workflow risk classification and human oversight

Full posture map and certification roadmap on the Trust Center. Detailed compliance documentation is shared during procurement review — email trust@getkommit.ai.

What you get

A control plane that answers every audit question without your help.

DATA

Residency & redaction

EU data residency is live today. PII, PHI, and payment-data redaction before model calls is in design-partner pilots.

ACCESS

SSO + RBAC + SoD

Org roles are live. Okta, Entra, Google, Ping, SCIM provisioning, JIT access, and per-workflow SoD are roadmap.

AUDIT

Hash-chained trace

Privileged admin actions are hash-chained and exportable today. Every agent action and PDF export are roadmap.

KEYS

BYOK · BYO models

BYOK, customer-managed model weights, and air-gapped deployment are design-partner roadmap controls.

Get in touch

See it on your stack.

30 minutes with our team. We'll walk you through governance, audit, evals — and answer everything procurement will ask. Bring your own NDA; we'll sign in 24 hours.