Most platforms watch one slice of your AI. Kapālins covers the whole estate — every model, copilot and agent — and scores each surface for security, compliance and cost as a single AI Trust Index. The capability, capacity and coverage to make enterprise AI safe to use, at scale.
Most platforms see only API traffic. Kapālins covers the whole estate through three observation modes — and scores every surface for security, compliance and cost. Switch from a gateway’s view to full coverage and watch the blind spots light up.
Representative estate on synthetic data — toggle Gateway only vs Kapālins.
One mode is a gateway. Three modes are coverage — each reaches AI a gateway-only platform can never see.
Inline gateway. Full payload visibility and real-time enforcement on every API call — allow, flag or block.
Scheduled scanning of SaaS-embedded AI — Copilot, Agentforce, Gemini in Workspace — behaviour a gateway never sees.
Audit-log ingestion from admin APIs — inventories what is authorised, configured and drifting across the estate.
A gateway sees one slice. Kapālins runs all three modes — so the AI your teams actually use is governed, not just your API traffic.
Boards cannot read a forty-tab dashboard. The AI Trust Index is a single 0–100 score — like a credit rating for your AI estate — composed of three weighted pillars, every input traceable to evidence.
Composite 0–100 per tenant. Bands: 85+ good · 65–84 medium · 45–64 high risk · <45 critical. A decision engine, not a dashboard.
Hardening, privacy, runtime firewalling, model integrity, governance, compliance and cost — one control plane. Stop stitching five vendors together to govern one estate.
Prompt-injection and jailbreak defence, output validation and runtime enforcement — every deployment hardened before it ships.
PII and sensitive-data detection, prompt privacy, cross-border governance and AI data lineage — with regulator-ready evidence.
A 23-rule policy catalogue: prompt filtering, cross-tenant blocking, agent guardrails. Detect & shadow GA; block mode rolling out rule-by-rule.
The AI Trust Index, runtime drift visibility and exposure analysis — evidence-linked, never a vanity metric.
Proxy, Probe and Connector: continuous monitoring across the whole estate, with ≤15-minute inventory snapshots.
APRA, DPDP, ISO 42001 and NIST AI RMF — evidence automation and audit readiness generated from live telemetry.
Attribute AI spend per tool, team and tenant; set budgets; report unit economics — an adjacency no AI-security vendor has claimed.
Compliance Shield turns each obligation into continuously-generated evidence: every AI interaction mapped to the controls your auditor actually tests, exported as PDF + JSON.
Representative view on synthetic, APRA-labelled data. Figures illustrative.
We win on the three things that matter to a regulated enterprise: how much of your AI we can see, how deeply we can govern it, and how completely we can prove it.
Proxy, Probe and Connector reach every model, copilot and agent — not just the API traffic a gateway can see.
Security, compliance and cost composited into a single AI Trust Index your board can act on.
Inline enforcement, scheduled probing and audit-log inventory — plus a 330-question Recon assessment.
APRA CPS 234/230, DPDP and the Privacy Act as first-class features, mapped continuously from live telemetry.
Your data stays in-country, with evidence — built for Australian prudential expectations.
Cost attribution per tool, team and tenant — an adjacency no AI-security platform has claimed.
No logo wall — verifiable product facts. This is what ships in v1.0.
The whole estate, every dimension, one number. That is what enterprise-grade AI governance looks like.
— Kapālins design principle
A 30-minute walkthrough of the Trust Index, the three observation modes and your regulator’s evidence chain — on your estate.