Enterprise Guide
ARQERA helps organizations deploy AI safely at scale. This guide covers compliance, security, deployment options, and total cost of ownership.
Why Enterprise Teams Choose ARQERA
| Challenge | How ARQERA Helps |
|---|---|
| "We can't audit what our AI does" | Every action logged with cryptographic proof |
| "Compliance is blocking AI adoption" | Built-in SOC 2, GDPR, EU AI Act support |
| "We need human oversight at scale" | Approval workflows that don't bottleneck |
| "Different teams need different policies" | Multi-tenant governance with role-based access |
| "We're worried about AI risk" | Real-time evaluation catches problems before they happen |
Compliance
Frameworks Supported
| Framework | Status | What ARQERA Provides |
|---|---|---|
| SOC 2 Type II | ✓ Compliant | Full audit trail, access controls, encryption |
| GDPR | ✓ Compliant | Data processing agreements, subject rights, retention |
| EU AI Act | ✓ Ready | Annex III high-risk requirements, human oversight |
| ISO 27001 | ✓ Aligned | Information security management |
| UK DPA 2018 | ✓ Compliant | Post-Brexit GDPR equivalent |
| Cyber Essentials | ✓ Certified | UK government baseline security |
EU AI Act Readiness
The EU AI Act's high-risk requirements take effect August 2, 2026. ARQERA addresses:
| Requirement | ARQERA Capability |
|---|---|
| Human oversight (Art. 14) | Escalation workflows, approval queues |
| Transparency (Art. 13) | Explainable verdicts, reasoning logs |
| Record-keeping (Art. 12) | 100% evidence capture, tamper-proof |
| Risk management (Art. 9) | Real-time evaluation, policy enforcement |
| Technical documentation (Art. 11) | Automated compliance reports |
Compliance Dashboard
Track your compliance posture in real-time:
- Go to Governance → Compliance
- Select a framework (SOC 2, GDPR, etc.)
- View control status (passed, failed, not applicable)
- Export reports for auditors
Auditor Access
Grant auditors read-only access to evidence:
- Settings → Team → Invite
- Select role: Auditor
- Auditors can view evidence and export reports
- They cannot modify policies or approve actions
Security
Architecture
Your App ─── TLS 1.3 ───► ARQERA API
│
┌────────┴────────┐
│ │
Evaluation Evidence Store
(stateless) (encrypted at rest)
│ │
└────────┬────────┘
│
Audit Log
(immutable)
Security Features
| Feature | Description |
|---|---|
| Encryption in transit | TLS 1.3, HSTS, certificate pinning |
| Encryption at rest | AES-256 for all data |
| API key scoping | Tenant-scoped, rotatable, revocable |
| SSO/SAML | Integrate with Okta, Azure AD, OneLogin, etc. |
| SCIM provisioning | Automatic user lifecycle management |
| MFA | Required for admin roles |
| IP allowlisting | Restrict API access by IP |
| Audit logging | Every access and change logged |
SOC 2 Controls
ARQERA maintains SOC 2 Type II certification. Key controls:
- CC6.1 — Logical access controls
- CC6.2 — Authentication mechanisms
- CC6.3 — Access removal processes
- CC7.1 — Security monitoring
- CC7.2 — Incident response
- CC8.1 — Change management
Request our SOC 2 report: security@arqera.io
Penetration Testing
We conduct annual penetration tests with third-party firms. Summary reports available under NDA.
Deployment Options
Cloud (Default)
Multi-tenant SaaS hosted on GCP (europe-west2, London).
| Aspect | Detail |
|---|---|
| Hosting | Google Cloud Platform, London region |
| Data residency | EU by default, US available |
| Uptime SLA | 99.9% (Enterprise: 99.99%) |
| Backups | Daily, 30-day retention |
Dedicated Cloud
Single-tenant instance in your preferred cloud region.
| Aspect | Detail |
|---|---|
| Isolation | Your own infrastructure |
| Regions | Any GCP, AWS, or Azure region |
| Customization | Custom domains, branding |
| Pricing | Contact sales |
On-Premises
Self-hosted in your data center.
| Aspect | Detail |
|---|---|
| Delivery | Docker containers or Kubernetes Helm chart |
| Requirements | 4 vCPU, 16GB RAM minimum |
| Support | Dedicated implementation team |
| Pricing | Annual license + support |
Integration
SSO Configuration
ARQERA supports SAML 2.0 and OIDC:
SAML Setup:
- Go to Settings → SSO
- Select SAML 2.0
- Enter your IdP metadata URL
- Map attributes (email, name, groups)
- Test connection
- Enable SSO enforcement
Supported IdPs:
- Okta
- Azure Active Directory
- OneLogin
- Google Workspace
- Ping Identity
- Custom SAML/OIDC
SCIM Provisioning
Automatically sync users from your identity provider:
- Go to Settings → SCIM
- Generate SCIM endpoint and token
- Configure your IdP with these credentials
- User creation, updates, and deactivation sync automatically
API Integration
The governance API integrates with any system:
# Your AI system calls ARQERA before any action
result = await arqera.evaluate(
action="send_email",
context={"to": "external@company.com"},
user_id="u_123",
tenant_id="t_acme"
)
Multi-Tenant Governance
Organization Hierarchy
Enterprise Account
├── Business Unit: Sales
│ ├── Team: EMEA
│ └── Team: Americas
├── Business Unit: Engineering
│ ├── Team: Platform
│ └── Team: AI
└── Business Unit: Finance
Policy Inheritance
Policies cascade down the hierarchy:
- Enterprise policies apply to everyone
- BU policies apply to that business unit
- Team policies apply to that team only
Lower levels can tighten but not loosen higher-level policies.
Role-Based Access
| Role | Capabilities |
|---|---|
| Viewer | Read evidence, view dashboards |
| User | Run agents, approve their own actions |
| Approver | Approve actions for their team |
| Admin | Configure policies, manage users |
| Auditor | Read-only access to all evidence |
| Owner | Full access, billing, SSO config |
Total Cost of Ownership
Pricing
| Plan | Price | Includes |
|---|---|---|
| Business | $19/user/month (min 20) | SSO, compliance, unlimited evaluations |
| Enterprise | Custom | Dedicated support, SLA, custom integrations |
ROI Model
Costs avoided with ARQERA:
| Risk | Without ARQERA | With ARQERA |
|---|---|---|
| Compliance fine (GDPR) | Up to €20M or 4% revenue | Evidence proves compliance |
| Compliance fine (EU AI Act) | Up to 7% revenue | Built-in Annex III support |
| Data breach | $4.45M average | Real-time DLP enforcement |
| AI mistake (reputation) | $1-10M+ | Human oversight at scale |
| Audit preparation | 200+ hours/year | One-click export |
Productivity gains:
- Reduce approval bottlenecks by 80%
- Automate 90% of routine approvals
- Enable AI adoption without compliance delays
Enterprise Pricing Example
| Component | 100 users | 500 users |
|---|---|---|
| Base platform | $23,880/year | $113,880/year |
| Premium support | Included | Included |
| Custom integrations | Contact sales | Contact sales |
| Dedicated instance | +$50,000/year | +$50,000/year |
Contact sales@arqera.io for a custom quote.
Implementation
Typical Timeline
| Phase | Duration | Activities |
|---|---|---|
| Discovery | 1 week | Requirements, integrations, policies |
| Setup | 1 week | SSO, SCIM, API keys, initial policies |
| Pilot | 2-4 weeks | 1-2 teams, iterate on policies |
| Rollout | 2-4 weeks | Organization-wide deployment |
| Optimization | Ongoing | Policy tuning, automation |
Success Criteria
Before rollout, ensure:
- SSO working for all users
- Policies match organizational requirements
- Approval workflows route to correct people
- Compliance dashboard shows green
- Integration with primary AI systems complete
- Training completed for approvers and admins
Support
| Tier | Response Time | Channels |
|---|---|---|
| Standard | 24 hours | |
| Business | 8 hours | Email, chat |
| Enterprise | 1 hour (critical) | Email, chat, phone, Slack |
Enterprise customers get a dedicated Customer Success Manager.
Case Studies
Financial Services Firm
Challenge: AI chatbot for customer service needed compliance sign-off
Solution: ARQERA governance on all customer-facing AI responses
Result:
- AI deployment approved in 6 weeks (vs 6 months estimated)
- 100% audit trail for regulator inquiries
- Zero compliance incidents in first year
Healthcare Technology
Challenge: AI document processing needed HIPAA-compatible oversight
Solution: ARQERA policies for PHI detection and escalation
Result:
- Automated 80% of document reviews
- 20% escalated to human reviewers (PHI-containing)
- Passed HIPAA audit with evidence exports
Global Retailer
Challenge: 50 AI agents across 12 countries, inconsistent governance
Solution: ARQERA multi-tenant deployment with regional policies
Result:
- Single compliance dashboard for all regions
- GDPR compliance for EU, CCPA for US
- 60% reduction in compliance overhead
Getting Started
- Contact sales — sales@arqera.io
- Discovery call — 30 minutes to understand your needs
- Proof of concept — 2-week pilot with your team
- Procurement — Security questionnaire, DPA, contract
- Implementation — 4-8 weeks typical
Resources
- Security Whitepaper
- SOC 2 Report (NDA required)
- Data Processing Agreement
- EU AI Act Compliance Guide
- API Documentation
Enterprise inquiries: enterprise@arqera.io