Policy Engine
Score actions in context and enforce outcomes: allow, hold, redact, or block with explicit reason codes.
ControlGate | Flagship Product
Control AI Risk in Microsoft 365 with Deterministic Outcomes
ControlGate gives security, IT, and compliance teams operational command over risky AI actions: evaluate, hold, approve, redact, block, and preserve the evidence chain by default, so high-risk actions are governed before they execute.
M365-native enforcement
Approval + intervention workflows
Audit continuity by default
Core + Autonomous AI Guard
Procurement-ready posture
controlgate — governance output
00:00:01
PASS
Policy score evaluated in context — risk classification applied
00:00:02
HOLD
Reviewer accountability enforced — approval required before release
00:00:03
DONE
Evidence-linked outcome recorded — audit chain sealed
Control Depth That Moves Beyond Alerting
ControlGate is built for practical intervention outcomes, not passive signal collection. Every control is designed to convert policy into action-time enforcement and accountable reviewer decisions.
Approvals Workflow
Route high-risk actions to designated reviewers for release or reject decisions with accountability notes.
Redaction Controls
Apply targeted redaction paths before release when policy allows safe continuation with sensitive data protected.
Audit Continuity
Keep decision events and outcomes linked end-to-end to support compliance evidence and post-incident review.
Native M365 Coverage
Govern Outlook, Teams, SharePoint/OneDrive, and Copilot pathways with strict native action evaluation.
How ControlGate Works
A practical operating model designed for rapid rollout without sacrificing enterprise-grade control outcomes.
- Connect Connect M365 pathways and configure tenant policy scope.
- Govern Evaluate each action with contextual policy logic and risk classification.
- Approve / Intervene Apply hold, release, redact, or reject actions with reviewer accountability.
- Evidence Preserve linked logs and outcomes for audits, incident review, and board reporting.
Why Enterprise Teams Buy ControlGate
Security, compliance, and IT teams use ControlGate to move from “we saw risk” to “we governed risk” with evidence that procurement can validate.
Reduce Action-Time Risk
Stop risky actions before execution instead of relying on post-event investigation and remediation.
Strengthen Human Accountability
Route sensitive decisions to designated reviewers with traceable release and reject outcomes.
Accelerate Buyer Confidence
Provide explicit architecture, dependency transparency, and evidence continuity for security and legal review.
Live UAT Proof
Manual Release Scenario
A risky Outlook action was held for approval, reviewed, and released with full action-log traceability and final release state captured.
Approval workflow validated
Audit chain captured
Live UAT Proof
Manual Reject / Block Scenario
A high-risk Outlook to Copilot pattern was held and rejected, resulting in a blocked outcome with explicit resolution metadata and event continuity.
Reject path validated
Blocked outcome visible
Trust and Procurement Readiness
- Cloudflare-first web/runtime architecture with staged migration safeguards.
- Dependency transparency across Microsoft, Stripe, and Supabase services.
- Explicit governance ownership model for security and compliance teams.
- Operational support path through documented onboarding and runbooks.
Enterprise Buyer Fit
- Hard enforcement outcomes, not detection-only alert streams.
- SOC-friendly intervention controls for high-risk actions.
- Evidence continuity that supports legal and audit stakeholders.
- Clear deployment path for both pilot and scaled production rollout.
Pricing and Commercial Model
Live plan structure with clear boundaries and add-on visibility. No hidden mandatory dependencies.
Starter
£499/month
- Up to 10 users
- 2 connector packs
- Core human-risk monitoring and approvals
- Policy engine with custom rules
- Full audit log
- Approval workflows
- Email notifications
- Standard documentation and onboarding
Most Popular
Pro
£1,499/month
- Up to 50 users
- 5 connector packs
- Core human-risk monitoring and approvals
- Policy templates library
- SIEM export (JSONL / CSV / JSON)
- Compliance reports
- Role-based access control
- Approval workflows with escalation
- Email and webhook notifications
- Add Autonomous AI Guard +£999/mo
Enterprise
£2,999/month
- Unlimited users
- Unlimited connectors
- Core human-risk monitoring and approvals
- SIEM export + push integration
- Custom branding
- Priority support with SLA
- Dedicated account manager
- Advanced compliance and audit packs
- Custom policy engine rules and logic
- Add Autonomous AI Guard +£999/mo
Enterprise Plus
Custom pricing
- Everything in Enterprise
- Autonomous AI Guard included
- Autonomous AI direct-action protection
- Custom commercial terms
- Strategic rollout support
- Dedicated engineering liaison
- Custom SLA and uptime guarantees
- Priority roadmap influence
- White-glove onboarding programme
Need custom SLAs, Autonomous AI Guard bundles, or enterprise pricing? Contact our sales team for Enterprise and Enterprise Plus pricing.
Frequently Asked Questions
How is ControlGate different from alert-only AI security tools?
ControlGate is designed for intervention outcomes, not just detection. It enforces hold, approve, redact, and block decisions with linked evidence records.
Does ControlGate cover autonomous AI direct actions?
Yes, via the Autonomous AI Guard commercial model. Core plans cover risky human employee actions, with add-on or included autonomous coverage by plan.
Can procurement teams review architecture and trust posture?
Yes. Aymentis security and legal pages provide architecture context, dependency transparency, and formal review pathways.
How quickly can we run an enterprise pilot?
Most pilots start with scoped connectors, policy baseline, and workflow validation. Teams then expand coverage with staged controls and evidence checkpoints.
Do approval and reject decisions remain auditable?
Yes. Approval outcomes, reviewer actions, and decision notes remain linked in an auditable event chain suitable for internal and external review.
What runtime model are you migrating to?
The target architecture is full Cloudflare runtime coverage, with staged migration and rollback safeguards to reduce operational risk.
Can we start with one team and expand in phases?
Yes. Most customers start with a scoped pilot team and policy baseline, then expand coverage through staged rollout checkpoints.
Will you support security and legal questionnaires during procurement?
Yes. ControlGate includes architecture context, dependency transparency, and governance evidence language to support security and legal review workflows.
Start Enterprise Evaluation
Move from page to live runtime in minutes, with practical onboarding and support pathways.