OBEL™

Security

Built for sensitive environments.

OBEL is not a wrapper. It's a security layer between your team and every AI model — with enforced controls that can't be bypassed from the outside.

PII Scrubbing

  • Every prompt passes through the scrubber before reaching any model
  • Detects names, emails, phone numbers, tax file numbers, ABNs, credit cards
  • Replaced with typed placeholders — the LLM never sees the original value
  • PII events logged to a tamper-evident security_events table
  • No bypass, no dry-run, no opt-out — enforced at the gateway

ARGUS-i™ Sovereign Classification

  • Every message classified: UNCLASSIFIED → SENSITIVE → PROTECTED → PROTECTED+ → TOP_SECRET
  • PROTECTED+ and above are hard-blocked — inference never starts
  • FAIL-SHUT gate: if the classifier errors, the request is denied
  • Classification rationale logged alongside every blocked request
  • Sovereign schema is version-locked and immutable per release

AES-256-GCM Vault

  • All API keys and secrets encrypted at rest using AES-256-GCM
  • Per-record nonces — reusing a nonce is cryptographically impossible
  • Decryption only occurs server-side; keys never leave in plaintext
  • Vault key stored in environment, never in the database
  • Key hint (last 4 chars) stored for rotation verification

GitHub Audit Trail

  • Every LLM interaction committed to a private GitHub repository
  • Commits are append-only — no deletion without breaking the chain
  • Commit SHA stored on each session row for cross-reference
  • Audit commits are non-blocking — never slow down user responses
  • Tamper-evident record compliant with audit requirements

Data Isolation

  • Strict row-level security on every database table
  • Every query is scoped to the authenticated user's organisation
  • Service-role access restricted to background system tasks only
  • No cross-tenant data access — ever
  • Supabase service role key never exposed to the browser

Cost Governance

  • Per-user and per-org monthly spend limits enforced at the gateway
  • Budget checks happen before inference — no charge on blocked requests
  • Admins can view real-time usage for every member
  • Prepay credit model — impossible to overspend your balance
  • Margin-adjusted costs tracked and visible to organisation admins

Responsible Disclosure

Found a vulnerability? Email security@ninthlabs.ai. We respond within 48 hours.

Get started freeView pricing