Security & deployment

Built to clear your security review.

Every control your reviewers ask about maps to a mechanism in the platform — not a promise on a slide.

Request the security overview How it works

The controls

Mapped, not promised.

What your reviewers require	The mechanism
Data never leaves your environment	Self-host or air-gap — your VPC or fully offline, on your data.
No data exfiltration	Egress lock — a successful prompt injection still can't move data out.
Least privilege, per action	Capability tokens (attenuate-only) — an agent narrows its rights, never widens.
Bounded blast radius	Sandbox, network-off by default · hard budget caps on tokens, dollars, wall-clock, and tools.
A human stays in control	Policy on every action — allow, deny, or require a human.
A provable, immutable record	Signed, hash-chained audit (the Operating Record) — tamper-evident, verifiable offline.
Evidence on demand	Proof Pack — an Ed25519-signed bundle that verifies offline and refuses to fabricate.
Your data trains no one's model	It runs on your infrastructure — nothing leaves to be trained on.

Deployment

Runs where your policy requires.

Self-host

Your VPC — your cloud account, your keys. Nothing routes through us.

Air-gapped

Fully offline — no required egress at all. The platform never has to reach the network.

Your stack

Docker, Kubernetes, or a single VPS. Integrates with Salesforce and ServiceNow over the MCP server.

Audit & evidence

Proof a reviewer can verify — offline.

The Operating Record is a signed, hash-chained log of every governed action. Each entry signs the one before it. Alter a single row after the fact and the chain breaks — so tampering is detected, not assumed away.

operating record● chain verified

# each entry signs the one before it

0xA2 · deny $60k wire✓ signed

0xA3 · require-human $6k✓ signed

0xA4 · cap runaway loop✓ signed

— alter 0xA2 after the fact —✗ CAUGHT

maverick proof-pack● Ed25519 signed

# PROOF.md — verifies offline

signature✓ Ed25519

chain✓ intact

fabricate a result✗ REFUSED

The Proof Pack is an Ed25519-signed evidence bundle: it verifies offline and refuses to fabricate a result it cannot prove.

Compliance & status

Mapped to the frameworks you answer to.

The controls above map to the expectations behind the frameworks regulated teams report against. Maverick is in alpha; we present control-mapping rather than badges. SOC 2 status and a full security overview are available on request.

SOC 2 HIPAA SOX GLBA

No completed certification is claimed. We share our security overview and current SOC 2 status on request, and map your questionnaire to the platform control by control.