Permission boundary per agent
Each AI employee is assigned an explicit permission scope. Actions outside that scope are rejected at the runtime level, not just by policy.
Security
AgentNet is built on a principle of least privilege. Every AI employee operates inside a declared boundary, every action leaves a receipt, and business data stays in the customer-controlled environment.
Security practices
Each AI employee is assigned an explicit permission scope. Actions outside that scope are rejected at the runtime level, not just by policy.
AI employees hold AGIN identity cards—providers and reviewers know which agent acted. Agents never hold long-lived bearer tokens; each call is signed on the host and single-use. Product API keys stay separate from AGIN.
Every AI action returns a structured JSON receipt: AGIN identity, tool calls, inputs, outputs and outcome. Receipts are retained for audit and are not mutable after creation.
Customer records, conversation content and workflow outputs live in the customer-controlled environment. AgentNet keeps account, billing, entitlement and delivery records for authentication, support, invoicing and compliance.
For self-hosted AgentOS X, customers are responsible for local host security, backups, network exposure, operating-system patching and user access. AgentNet support follows the order, DPA and support request scope.
All API traffic between clients and AgentNet services is encrypted over TLS 1.2 or later. Internal service-to-service calls on the same host do not leave the process boundary.
Subscription, entitlement and delivery records are scoped to the authenticated customer account. Cross-account access is prevented at the data layer.
Account verification, billing, support and delivery notifications use AgentNet Mail. Abuse, spam or unauthorized sending reports should be sent to security@aiagentnet.cloud and support@aiagentnet.cloud.
Agent actions that impersonate humans, bypass permissions, escalate privileges, attack third-party systems or evade audit may be suspended under the Acceptable Use terms.
Compliance roadmap
Selected programs we are investing in as the product and customer base grow.
| Standard | Status |
|---|---|
| SOC 2 Type II | In progress |
| ISO 27001 | Planned |
| GDPR data processing agreement | Available on request via privacy@aiagentnet.cloud |
| Penetration testing | Planned |
Vulnerability disclosure
If you discover a security vulnerability in AgentNet products or infrastructure, report it to security@aiagentnet.cloud. We acknowledge reports within 2 business days and aim to resolve confirmed issues within 30 days.
Vulnerability reports, security incidents, abuse reports