Security & governance

Built for regulated
SAP environments.

Privacy and auditability are not features bolted on at the end — they are constraints we designed against from day one.

Data sovereignty

Your data stays
where you put it.

Lens is deployed inside your network. SAP rows, prompts, and results flow between components you operate. There is no required outbound connection to a vendor cloud, no telemetry pipe carrying business data, and no shared multi-tenant backend.

  • Hosted on customer-controlled infrastructure
  • No outbound dependency for core operation
  • No vendor-side storage of customer data
  • Air-gapped deployments are supported

Privacy gates on outbound AI calls

When a hosted AI model is configured, sensitive objects are filtered out of prompts before the call is made. The decision is made by policy, not by the model itself.

AI models & sensitive data

Where models run.
What they’re allowed to see.

Lens runs at least two distinct tiers of AI models. The privacy regime that applies to a model is determined by where it runs — not by who the vendor is, not by what the prompt looks like.

Tier 1 — General-purpose reasoning LLM

One large model handles free chat, schema interpretation, NL → query planning. It can be a hosted provider or a local open-weights model.

  • Hosted (remote): every prompt passes through a policy gate. Artifacts flagged is_sensitive in the catalogue are stripped before the call leaves your network. No row-level PII or otherwise classified data goes outbound.
  • Local on-premise: the gate becomes irrelevant — the prompt never leaves the perimeter to begin with.
  • The model endpoint URL is captured in audit for every single call, so the applicable regime is verifiable after the fact.

Tier 2 — Specialised local models

Algorithms call small, task-specific models hosted locally — log classification, error clustering, embeddings, redaction, extraction. Different algorithms can use different models.

  • Served from inside the customer network — on-premise or private cloud, on operator-controlled hardware. No remote calls. No telemetry.
  • No privacy gate applies. Full row content and any sensitive fields may be passed in — because the weights and inputs never leave the perimeter.
  • Each algorithm declares which model and which endpoint it uses; both are recorded in the run history.
Sensitive data does not leave Lens. If you point Lens at a hosted reasoning model, sensitive objects are stripped before the call is made. If you keep all models local, the question never arises — and you can still run multiple, specialised local models per algorithm without compromising on what each one is allowed to read.

Access control

Role-based, end to end.

Every user authenticates against Lens, every SAP call is bound to that identity, and every privileged action requires an explicit permission.

Authenticated users

Local accounts or your existing identity provider. Sessions are signed and short-lived.

Granular permissions

Permissions are atomic and assigned via roles. New capabilities ship with their own permission keys.

SAP authorisations honoured

Calls execute under the user's SAP identity. Lens never elevates beyond what the user is allowed to see.

Read-only by default

Out of the box, Lens offers no write paths to SAP — production data cannot be modified through the product surface. Write capabilities can be enabled selectively, per customer and per use case, under explicit agreement.

Auditability

What happened.
Who did it. When.

Every meaningful action — login, query, algorithm run, admin change, export — is recorded with the originating user, timestamp, outcome, and enough context to reproduce it. Audit data is dual-written so a single failure cannot erase the trail.

  • Per-action audit events with stable schema
  • Run history preserves inputs, version and outcome
  • On-demand audit export per algorithm
  • Retention configurable per algorithm risk class

Compliance posture

Lens is designed to align with the obligations enterprises already face — works council scrutiny on HR analytics, EU AI Act risk classification, internal audit reviews. Each registered algorithm declares its sensitivity, decision-support scope, retention period, and explainability notes up front, and runs are tagged accordingly.

Operational trust

Predictable, inspectable,
reversible.

Bounded surface area

A small, well-named set of services. Each one does one job. Operators always know which box answered which question.

Reversible deployments

Schema and configuration changes are migration-driven. Rolling back a release rolls back the data shape with it.

Failure is visible

Errors surface to users with a clear cause. Operators see the same context in logs — not a different story.

No hidden side effects

The product never writes to SAP and never enriches itself with customer data behind the operator's back.

Talk to your security team.

We provide a security questionnaire and architecture brief on request.

Request the brief