endear.ai
Secure Agent Hub · Early Access

Secure execution layer
for AI agents in the enterprise.

Aether sits between your agents and the world — enforcing policies on every tool call, logging every decision, and escalating to humans when the stakes are high.

View PricingRequest Early Access

The Problem

AI agents in production are
ungoverned by default.

Every agent framework ships with capability. None ship with policy enforcement, audit trails, or human oversight. That gap is your compliance risk.

01

Agents act without authorization

Your AI agent reads a database it should not touch, sends an email without approval, or calls an external API unchecked. No one knew until the damage was done.

02

No audit trail for compliance

Your auditor asks what the agent did last Tuesday. ISO 42001 and SOC 2 require more than a log file and a prayer.

03

Human oversight is manual chaos

High-risk steps get reviewed by whoever happens to be watching Slack. No SLA, no routing, no escalation path.

Capabilities

Everything your agents need.
Nothing they should not have.

🛡️

Policy Engine

Every tool call, every data access, every agent action is evaluated against your Open Policy Agent rules before execution. Deny, allow, or escalate — in under 15ms.

🔌

MCP Tool Control

Agents connect to the outside world through Model Context Protocol servers. Aether sits between agent and tool, enforcing policy on every single invocation.

📋

Immutable Audit Trail

Every workflow, every policy decision, every agent action is logged to an append-only structured audit log. Compliance evidence generated continuously, automatically.

🔄

Workflow Orchestration

Durable, multi-step agent workflows powered by Temporal. Steps run in sequence or parallel. Failures retry automatically. State survives restarts.

👤

Human-in-the-Loop

High-risk steps pause for human review before proceeding. Escalation signals route to your team via Slack, email, or webhook. The agent waits.

🏢

Multi-Tenant Isolation

Per-tenant MCP tool namespacing, isolated policy sets, and separate audit streams. Run dozens of customers on one deployment without data bleed.

How It Works

Five steps. Zero unauthorized actions.

01

Agent calls a tool

Your agent emits a tool_call — read database, send email, call API.

02

Envoy intercepts

Aether's proxy captures the request before it reaches the tool.

03

Policy Engine evaluates policy

Policy engine checks agent identity, tenant, tool, and context in <15ms.

04

Allow, deny, or escalate

Approved calls proceed. Denied calls error. Flagged calls pause for human review.

05

Everything is logged

Every decision — allow or deny — written to the immutable audit log.

aether · audit-log · live
09:14:31ZINFO event="workflow_start" workflow_id="wf_9c3b" agent_id="agt_7f2a" tenant_id="tenant_pharma_01"
09:14:32ZDENY event="policy_decision" tool="postgres.write" allowed=false reason="write_restricted_outside_business_hours"
09:14:33ZINFO event="step_blocked" on_deny="escalate" signal="human_review_required"
09:14:35ZALLOWevent="policy_decision" tool="postgres.read" allowed=true latency_ms=12
09:14:36ZINFO event="workflow_complete" steps_completed=3 steps_blocked=1 duration_ms=4120

Compliance

The frameworks your auditors already know.

Aether maps directly to AI governance frameworks. When compliance asks for evidence, the architecture answers.

ISO 42001

AI management system standard. Audit trail, policy engine, and human-in-loop controls map directly to its requirements.

Aligned

NIST AI RMF

Govern, Map, Measure, and Manage functions covered by Aether's architecture.

Aligned

HIPAA

PHI never leaves the enclave. Agent access to clinical data requires explicit policy allow. Full access log for BAA compliance.

Aligned

SOC 2 Type II

Immutable audit log, least-privilege access, automated incident escalation. Control evidence generated continuously.

Aligned

Pricing

Start secure. Scale with confidence.

All tiers include the full policy engine, audit trail, and Keycloak integration. No security features paywalled.

Team
Starter
$1,800/month
Up to 5 agent types
10K workflow runs/mo
Shared MCP tools
99.5% uptime
Policy Engine
Full Audit Trail
Keycloak Integration
Email Support
·Tenant Isolation
·Custom MCP Servers
Contact Sales
Most Popular
Platform
Professional
$4,500/month
Unlimited agent types
100K workflow runs/mo
Per-tenant MCP isolation
99.7% uptime
Policy Sync
Full Audit Trail
Keycloak + SSO/SAML
Self-hosted Langfuse
Human-in-Loop Controls
Priority Support
Get Started
Regulated
Enterprise
$9,500/month
Unlimited agent types
Unlimited workflow runs
Dedicated policy cluster
99.9% uptime SLA
ISO 42001 Control Mapping
NIST AI RMF Alignment
Air-gap / VPC Option
Compliance Report Exports
Dedicated Support Engineer
SLA + BAA Available
Contact Sales
On-Premise
Self-Hosted
Custompricing
Your data center
Your Temporal cluster
Your Postgres + MinIO
Custom SLA
Full Source Deployment
Air-Gapped Option
Your Keycloak Instance
White-Glove Setup
24/7 Dedicated Support
Government / Defence Ready
Contact Sales

Your agents should have a paper trail.

We are onboarding design partners in financial services, healthcare, and regulated SaaS. Production by end of April 2026.

Request Early AccessTalk to a Solutions Engineer