Autonomous AI Discovery
On Your Data — Enterprise Ready
Everything in the open-source platform, plus SSO, role-based access control, data governance, audit logging, and a Slack integration — built for organizations that need security, compliance, and multi-tenant isolation.
Enterprise layers around the open-source core
Enterprise Authentication
Plug into your existing identity infrastructure. No custom integration, no user migration, no separate password database.
Any Identity Provider
Auth0, Okta, Entra ID, Google, Keycloak, Cognito — automatic OIDC discovery.
Role-Based Access
Viewer, member, admin — granular per-endpoint enforcement via JWT claims.
Multi-Tenant
Organization-scoped isolation via JWT. Each tenant sees only their data.
Claim Mapping
Map any IdP claim to roles and orgs. Namespaced, array, and custom formats.
Data Governance
Control exactly what the AI can see and query. Protect sensitive data without changing your warehouse schema or ETL pipelines.
| user_id | region | amount | |
|---|---|---|---|
| u-4821 | j@ac.co | US-West | $142.00 |
| u-7733 | m@co.io | EU-North | $89.50 |
| u-1094 | s@in.co | US-East | $215.75 |
| u-5507 | l@fi.co | APAC | $64.20 |
Granular Access Policies
Exclude datasets, tables, or columns using exact match, glob patterns, or regex — no source data changes needed.
Data Classifications
Tag columns as PII or restricted for automatic exclusion. Safe, internal, and confidential levels for flagging.
Three-Layer Protection
Schema filtering, query result redaction, and AI-powered SQL rewriting — defense in depth at every layer.
Governance Audit Trail
Every exclusion decision recorded with timestamp, rule, and affected data — ready for compliance reviews.
Audit Logging
Know who did what, when. Full visibility into every action across your organization — built for compliance teams and security reviews.
One dashboard for your entire audit trail
Search by user, time range, or action type. Every request is logged with full context — no gaps, no blind spots. Configurable retention from 30 days to indefinite.
Complete Accountability
Every action is attributed to a user and organization. Know exactly who ran a discovery, changed a setting, or accessed sensitive insights.
Compliance Ready
Filterable, exportable audit trail with configurable retention policies. Built to support SOC 2, HIPAA, and GDPR audit requirements.
Operational Visibility
Spot unusual access patterns, track adoption across teams, and understand how your organization uses AI discovery — all from the admin dashboard.
Slack Integration
Discovery notifications and AI-powered Q&A in the channels your team already lives in. Nothing new to learn — just a slash command.
Discovery Notifications
Auto-posted to linked channels when a discovery run completes — with stats, severity breakdown, and a deep link to the dashboard.
Slash Commands
search, ask, insights, and status — AI-powered answers and semantic search, all answered directly in-thread.
Channel-Linked, Signed, Audited
Each channel connects to one project. Every request is signed, verified against the Slack signing secret, and logged to the audit trail.
Fine-tuning on your discoveries
DecisionBox captures every query, fix, and finding. Export it and fine-tune an open model that knows your warehouse — or let the DecisionBox training tool handle the pipeline for you.
Golden data, not log dust
Every record is validated against your warehouse, feedback-rated by your team, or produced by a run that completed successfully. The training set is ground truth, not chatter.
Preference data, natural
Thumbs-up / thumbs-down on insights and recommendations become DPO pairs. Your team's preferences are already attached to every record.
Any open model, LoRA/QLoRA
Llama, Gemma, Mistral, Qwen, DeepSeek, Phi — train in your stack or use the DecisionBox training tool. Parameter-efficient by default.
Open Source vs Enterprise
The open-source edition gives you the full discovery engine. Enterprise adds the security, governance, and compliance layer your organization needs.
Plugin Architecture — Zero Fork
Enterprise features are plugins that layer on top of the open-source platform. No core code is modified. Upgrade the open-source edition independently — enterprise capabilities are always additive.
Discovery engine, API, dashboard, providers, domain packs, Helm, Terraform
OIDC auth, RBAC, data governance, audit logging, priority support
Deploy Your Way
Kubernetes + Helm
Enterprise Helm values overlays layer on open-source charts. Secrets management, ingress, and RBAC — production-ready on any K8s cluster.
Terraform (GCP / AWS)
Infrastructure-as-code modules for GKE and EKS. VPC, IAM, Workload Identity, and enterprise config — all provisioned in one apply.