EntryDesk provides enterprise-grade security for AI teammate deployments. Key security features include: Role-Based Access Control (RBAC) for managing user permissions across workspaces; BYOK (Bring Your Own Keys) allowing organizations to use their own LLM API keys — keys are never stored in plaintext; comprehensive audit logs tracking all AI actions; Tool Approval giving IT control over which connectors AI can access; Resource Governance with progressive publishing (Personal → Team → Workspace) to prevent unvetted tools from spreading; OAuth 2.0 connector authentication with per-user tokens (no shared service accounts); SSO via SAML on the Enterprise plan; and SOC 2 Type II compliance (in progress). EntryDesk supports multiple LLMs (Claude, GPT, Gemini) and never trains models on customer data. Prompt content is processed in-memory and not persisted by default.
Enterprise-grade controls for your AI.
EntryDesk never trains on customer data. LLM providers receive only what's needed for each task.
RBAC, Tool Approval, and audit logs give your IT team full visibility and governance.
Use your organization's own LLM API keys. Your model, your terms, your data residency.
Assign roles at workspace, team, and user levels. Control who can create agents, connect tools, and publish resources. Permissions follow your org structure.
IT admins approve which connector tools AI teammates can access. Block sensitive operations, allow read-only access, or approve full automation per tool.
Every AI action is logged: which user triggered it, what tools were accessed, what data was read or modified. Full audit trail for compliance.
Enterprise customers can use their own LLM API keys from OpenAI, Anthropic, or Google. Your data goes through your own provider agreement.
All third-party integrations use OAuth 2.0. No passwords stored. Users authorize each connection individually. Revoke anytime.
Progressive publishing: Personal → Team → Workspace. Agents and skills start private. Only promoted resources are visible to the broader team, preventing unvetted tools from spreading.
Switch between Claude, GPT, and Gemini at any time. No vendor lock-in. When a better model arrives, your agents and workflows keep working.
All connector authentications use OAuth 2.0 with per-user tokens. Each team member authenticates with their own credentials — no shared service accounts.
EntryDesk acts as an orchestration layer. Only the data relevant to each task is sent to the LLM. No persistent storage of conversation data beyond your configured retention period.
Through the EntryDesk web interface or Slack/Teams chatbot.
Using your BYOK API key or EntryDesk-managed keys. Your prompt is sent to the LLM provider (OpenAI, Anthropic, Google) — EntryDesk does not store prompt content.
If the task requires tool access (e.g., read Salesforce, write to Slack), the agent uses the user’s own OAuth token. Only IT-approved connectors are available.
Output is displayed in the conversation. Audit log records the action, the user, and the connector used.
In progress (expected Q3 2026)
In progressEU data handling ready
CompliantAll data encrypted in transit
ActiveContractually guaranteed
GuaranteedEntryDesk stores conversation metadata (timestamps, user IDs) for the audit log. Prompt content and tool responses are processed in-memory and not persisted by default. With BYOK, all LLM calls go directly through your provider account.
Yes. Tool Approval lets IT admins whitelist specific connectors. Users can only connect to approved tools. New connector requests go through an approval workflow.
You add your own API keys for OpenAI, Anthropic, or Google in the workspace settings. All LLM calls use your keys and are billed to your accounts. EntryDesk never sees or stores your API keys in plaintext.
Audit logs track every agent action: which user triggered it, which connector was used, what action was taken, and when. Logs are exportable for compliance reviews.
EntryDesk supports multiple LLMs. You can switch providers without rebuilding agents or workflows. Your configuration, connectors, and automations remain intact.
SSO via SAML is available on the Enterprise plan. Contact our team for details.
SOC 2 Type II audit is in progress, expected Q3 2026. We are happy to share our current security documentation and practices upon request.
Our team is happy to walk through EntryDesk's security architecture with your IT department.
Talk to Our Team →