How is the pricing determined?
Control Core is not just an Identity tool—it is a real-time Authorization Enforcer. One "Bouncer" might protect a single API used by millions, or a legacy database used by ten people. We price based on the infrastructure we protect, giving you a predictable cost model that doesn't penalize you for growing your user base.
Custom tier is tailored for growing enterprises needing advanced control. Pricing is customized—contact us to discuss based on your scale. It offers deeper features like unlimited policies and dedicated support, making it ideal for larger teams with specific compliance or integration needs.
Is Control Core limited to users/identities?
No. Control Core PBAC (Policy-Based Access Control) evaluates the intent of any actor. This includes human employees, external partners, and—most importantly—AI Agents and Service Accounts. We ingest data signals from any approved store (SIEM, CRM, HRIS) to make a decision at the millisecond of the transaction.
What are Context Generations?
These are the secure "packages" of data and rules Control Core creates for AI or other tools via the Model Context Protocol. Each generation ensures your sensitive info stays protected while enabling workflows with your additional context—think of it as the core unit of secure value we provide.
What deployment options are available?
Control Core is a customer-owned solution. The platform and the bouncers run within your security perimeter. Your policies, logs, and transaction data never leave your jurisdiction.
What is a Bouncer?
The 'Bouncer' is the Control Core enforcement component you deploy in front of the resource (LLM, AI Agent, API, Application, Data or other) that you plan to protect with Control Core. This is delivered as a standalone micro-service for no code deployment.
The rules that you generate and manage on the Control Plane, rules metadata is synchronized to the Bouncer for real-time contexts and intelligence.
What Policy Templates are included?
There are ready-to-use rules inspired by standards like PIPEDA, GDPR or HIPAA, NISYT AI RMF, etc plus business basics like time restrictions. Custom adds Custom Permissions Scanner (auto-detects gaps) and Rule Recommender (suggests optimizations), helping you build a robust governance layer quickly.
Does my team need to modify our application code to use Control Core?
No. Control Core uses an an advanced architecture. Whether it's a legacy SOAP service or a modern REST API, the bouncer enforces policies externally. You never have to "open the hood" of your apps to change your security posture.
Does this mean we can secure AI Agents without modifying the LLM?
Exactly. As AI Agents interact with your data or infrastructure, our bouncers act as "Sovereign Guardrails." They evaluate the Intent of the AI’s request in real-time. If an AI agent tries to perform an unauthorized action, the Bouncer kills the transaction —keeping your AI environment secure without requiring you to retrain or recode your models.
What support is included?
Control Core provides high-priority access via a private Google Meet channel for quick resolutions. Custom includes a dedicated account manager and support on your preferred channels (e.g., email, Slack), acting as an extension of your team for strategic guidance.
If any of this sparks questions or you'd like to chat about how it fits your setup, reach out—We are here to help make this a smart investment for your business.
*Prices are in CAD. Regional tax applicable upon invoicing.