Block, redact, modify or require: write rules once in CEL and the gateway evaluates every prompt, completion and tool call inline, in milliseconds.

Compose conditions on identity, content and destination, then watch them allow, redact and block in real time.


Express policy in CEL as conditions on principal, content and destination. Ship signed rule-packs through CI; every change lands in a transparency log.
Conditions on identity, content, destination and cost, combined however you need.
Block, redact, modify or require approval. Granular control beyond allow or deny.
PII and secrets detected and scrubbed inline across LLM and MCP traffic.
Prompt-injection, jailbreak and lethal-trifecta patterns blocked at the edge.
Ed25519-signed rule-packs, shipped through CI with a transparency log.
Prebuilt policy sets for GDPR, EU AI Act, DORA, NIS2 and EHDS.


Every rule can branch on the principal (human, agent or MCP server) and the risk it carries. Open any caller to see the policies it triggers.
EU-hosted SaaS, your own cloud, or fully air-gapped. Engineered against the regulations your auditors actually ask about.
Spin up an EU-hosted trial in under an hour, or talk to the team that built it.