Enterprise

Everything your security team is going to ask about.

Single sign-on, customer-managed keys, dedicated deployment inside your own cloud, and every piece of paperwork your legal team is going to send us. All of it, ready to review.

What Enterprise buys you

The controls your security team is going to ask for.

Everything on this list shows up in InfoSec questionnaires. All of it is available on request.

Single sign-on

SAML or SCIM through your existing identity provider — Okta, Azure AD, Google Workspace. Provisioning and deprovisioning both ride the same signal, so a departing teammate loses access the moment they leave your directory.

Bring your own model

Route every LLM call through your own Anthropic or OpenAI account, or through a self-hosted model that speaks the OpenAI API — vLLM, TGI, Ollama, whatever your ML team runs. Data flows inside your legal boundary, not ours.

Dedicated deployment

A dedicated Gauss deployment inside your AWS or GCP account. We handle the deployment; you keep root access. Your data never leaves your cloud.

99.9% SLA

Uptime commitment with credit-back terms. Standard is 99.5%; Dedicated is 99.9%; Custom quotes 99.99% for the strictest environments.

Named CSM and priority support

A named customer success manager, a priority support queue with a one-business-day response target, and quarterly reviews. Not a shared inbox.

Procurement, sorted

MSA, GDPR-compliant DPA, CAIQ and SIG questionnaires, and a BAA for HIPAA on the Custom tier. Redlines welcome.

Deployment options

Pick the boundary your security team wants.

Same product, three shapes. Every shape ships with the same isolation and audit; what changes is where the data lives and who holds the keys.

Shared SaaS

Basic — Scale

The default. Gauss on our multi-workspace SaaS, with strict workspace isolation and encryption keys that don't cross workspaces.

  • Fastest onboarding — one click from Slack install
  • EU region default; US region on request
  • SOC 2 Type II in progress; DPA available

Dedicated SaaS

Enterprise Standard

Your own single-workspace Gauss instance on our infrastructure. Fully isolated from other customers, operated by us.

  • No shared infrastructure with other customers
  • Choose your region — EU, US, or a custom region on quote
  • Customer-managed encryption keys available

Dedicated in your cloud

Enterprise Dedicated

A single-workspace Gauss deployment inside your own AWS or GCP account. You keep root access; we handle the deployment and updates.

  • Data never leaves your cloud account
  • Your keys, your network, your control plane
  • Right fit for HIPAA and other heavily-regulated environments

Compliance

Where we stand.

Current status of the certifications and frameworks that show up in enterprise reviews.

SOC 2 Type II

In progress

Type II engagement in progress with a Big Four auditor. Report available under NDA once the observation window closes.

GDPR / UK GDPR

Available today

DPA available today. EU-only data residency on shared SaaS. SCC and IDTA in place for cross-border transfers.

HIPAA

On request

Available on Enterprise Dedicated with a signed BAA. PHI-adjacent tool integrations reviewed case by case.

ISO 27001 and FedRAMP

Roadmap

Prioritised for Custom-tier engagements as customer demand justifies. Talk to us if either is on your critical path.

Data protections

What we don't do with your data.

We don't train on your data.

Your prompts, tool outputs, and audit log are not used to train any model — not by us, and not by our upstream LLM providers (contractually forbidden by every provider we route through).

We can't reach across workspaces.

Isolation is enforced at every layer of the stack, not just at the application. A compromised service account still only sees one workspace's data.

We can't decrypt your data without your key.

Enterprise customers can supply the encryption key that wraps every sensitive field. Rotate on your schedule; revoke to render the workspace — backups included — unreadable to us.

We don't hide what happened.

Every action lands in your audit log. Owners can export it whenever they want. Sensitive strings are stripped before write; the shape of the run stays visible.

Talk to sales.

Enterprise engagements start with a scoping call. Bring the questionnaire, the redlines, and the data-residency requirements.