Security You Can Trust
Enterprise Ask is built with security at its core. Your data never leaves your Microsoft 365 tenant, and every action is logged for compliance.
Authentication
Azure Entra ID (Azure AD)
Enterprise SSO with your existing Microsoft identity provider
On-Behalf-Of Flow
Secure token exchange that respects user permissions
MFA Support
Works with your existing multi-factor authentication policies
Data Protection
Isolated Workspaces
Each session runs in a dedicated Docker container
No Permanent Storage
Document content is never stored after session ends
Encrypted Transit
All data encrypted with TLS 1.3
Access Control
Permission Inheritance
Respects your Microsoft 365 permissions exactly
Tool Risk Levels
High-risk actions require explicit user approval
Bash Validation
Blocks dangerous commands and path traversal
Compliance
Audit Logging
Comprehensive logs of all queries and tool usage
SOC 2 Ready
Enterprise-grade infrastructure and processes
GDPR Compliant
Data residency and privacy controls
How Permissions Work
User Request
User asks a question in natural language
Permission Check
System evaluates tool risk level
User Approval
High-risk actions require explicit consent
Audit Log
All actions recorded for compliance
Tool Risk Classification
Low Risk
Read-only operations that don't modify data or send messages.
sharepoint_search calendar_events todo_lists Medium Risk
Downloads and minor modifications. Logged but auto-approved.
sharepoint_download mail_read todo_create_task High Risk
Actions that send messages or create events. Requires user approval.
mail_send channel_post event_create Questions about security?
Our team can provide detailed security documentation and answer any compliance questions.
Contact Security Team