What is a corporate AI governance layer?

It is a software layer that sits between the company's tools and the LLM providers and applies the organization's rules to every request: it blocks or masks sensitive data, controls spend through budgets, restricts which models can be used, isolates access per department and records everything in an audit trail. HorseLabs implements this layer across 5 fronts — data, cost, models, access and connectivity — behind a single key, for any provider.

How does HorseLabs stop sensitive data from reaching the LLM provider?

Every prompt passes through the gateway before the model. The DLP Shield inspects the content pre-call: deterministic rules detect bank data — credit-card numbers (Luhn) —, CPF, e-mails and credentials; an NLP layer detects person names and PII that rules can't reach. Depending on the team's policy, the data is masked or the request is blocked before it leaves — and the violation is recorded in the trail, with the data already masked.

Does using HorseLabs solve my LGPD compliance?

Not on its own — and be wary of anyone who promises that. Compliance involves process, legal basis, contracts and people; no tool "solves" it. What HorseLabs delivers are the technical controls that sustain your posture: blocking and masking of personal data before the provider, a violation audit trail and access isolation. And let's say it plainly: every relevant LLM provider is foreign, so international data transfer is intrinsic to using AI. We give you control, reduction and proof over what leaves — not the illusion that nothing does.

Do I need to replace the tools my team already uses?

No. The layer speaks the OpenAI-compatible standard: anything that already works with that standard — IDEs, agents, scripts, internal tools — starts pointing at the gateway by swapping the base_url and using the team's virtual key. The employee keeps their workflow; the company gains control.

What happens if the data detector goes down?

Fail-closed. When the team's policy is set to block and the detector becomes unavailable, the layer stops the request instead of letting it through. Protecting the data is the architectural default — not a setting someone forgets to turn on.

How does AI cost control work?

Each team uses a virtual key with its own budget. Spend shows up in real time per user, key, team and cost center. When consumption crosses the threshold you set, the layer fires an alert (webhook into your workflow); when it overruns, it cuts off. And every request is logged: who, which model, how many tokens, how much it cost.

Which providers and models are supported?

Claude (Anthropic), GPT (OpenAI), Gemini (Google) and Grok (xAI), behind the same key and the same API standard. The catalog is fed by each provider's live models and governed by an allowlist: everything starts off, and only what an administrator approves goes into use. A non-approved model gets a 403.

How is access isolated between departments and companies?

Each organization and each department lives in its own tenant, with strictly scoped roles (operator, admin, member). Provider credentials live in a vault and never reach the end user. Sensitive actions require a second factor, and every access lands in the audit trail.

How much does it cost?

It depends on scope — operation size, number of departments/tenants and request volume. The investment structure is at horse-labs.dev/pricing; scope and metric are defined before we start, with no surprises.

By requesting access through the form on this page — a corporate e-mail and your team size are enough. We are in a validation phase with selected companies: the founder replies within 1 business day.

Enterprise AI governance: the 4-axis guide

AI governance is the set of controls that keep large language model usage predictable, auditable and under your control. In practice it breaks down into four axes: data, cost, access and models. This guide defines each one and shows how to solve them at the infrastructure layer — a self-hosted LLM gateway — instead of trusting the provider.

Data governance

AI data governance means ensuring sensitive information (PII, secrets, customer data) never leaks to the model provider or to uncontrolled logs.

Without governance, any prompt leaves your operation straight for the provider — and takes along what it shouldn't. A tax ID, an API key, a customer secret pasted into the text becomes tokens sent outside and, often, recorded in logs you don't even control. The leak isn't an attack: it's normal usage, with nothing standing between the sensitive data and the model.

Solving this at the infrastructure layer means inspecting every call before it reaches the provider. At the gateway, a DLP guardrail runs pre-call and analyzes the content on two fronts: deterministic pattern detection (secrets, keys, known formats) and an NLP tier that recognizes PII such as person names. On a hit, you can mask the snippet or block the whole call — before the data leaves.

The effect is that sensitive information never silently reaches the provider or the logs. The policy is set per organization, with modes to monitor or block, and the control point is a single one — instead of relying on every developer remembering to scrub the prompt by hand.

At Horse Labs, a SecOps guardrail runs pre-call on the gateway with deterministic detection (regex under RE2, ReDoS-immune) plus an NLP tier with Presidio for PII, masking or blocking per the per-organization policy — and it's fail-closed: if the PII tier is set to Block and Presidio is unreachable, the call is blocked, not let through.

Go deeper: AI data governance

Cost governance

LLM cost governance means making model spend predictable and attributable: budget caps, blocking before overrun, and cost tracked per client, team or project.

Without governance, AI cost shows up only on the invoice — already blown. The provider bills per token consumed but won't answer "who spent what, on which contract." In multi-client operations that's untenable: you can't bill the right cost or forecast next month.

Cost governance solves this at the layer between your operation and the providers. Every call passes a single point where you can enforce budget caps, alert at thresholds (50%, 80%, 100%) and block automatically when the budget runs out — before the overrun, not after. Spend is attributed per cost center, so each client, team or project carries its own number.

The payoff is twofold: financial predictability (no invoice surprise) and correct attribution (you bill each contract's real cost and see where unoptimized spend hides — for example, an expensive model running a task a lightweight one would handle).

At Horse Labs, the gateway enforces per-cost-center budgets with threshold alerts and automatic block on overrun; per-client spend is visible in real time in the Console and can be delivered by report.

Go deeper: LLM cost governance

Access governance

Access governance means controlling who (person or agent) can use which models and data, with credentials that stay hidden and an audit trail of every use.

Without access governance, everyone — and every agent — reaches any model with the same credential, usually an API key loose in the code or in an environment variable. When it leaks, everything leaks; and when something goes wrong, there's no way to reconstruct who used what. In multi-client operations the worst part is the missing boundary: one client's data ends up reachable from another's context.

Handled at the infrastructure layer, access becomes a role, not a key. Each person or agent operates under a profile with scoped permissions, and everything is filtered by organization — one client's data stays isolated from another's. Provider credentials live in a secrets vault, delivered to services on demand and never embedded in the agents or models themselves; changing a secret requires a second factor. Every sensitive action is recorded.

The result is that you control who reaches which models and data, keep credentials isolated from the code that consumes them, and have an audit trail of every use — the basis for answering "who did what" without reconstructing anything.

At Horse Labs, access control is RBAC with three roles (platform operator, single-organization admin, self-service member/viewer) all scoped by organization and validated by integration tests; secrets live in HashiCorp Vault, delivered via AppRole and never embedded in the agents, with writes protected by 2FA (TOTP) and every sensitive action in the audit trail.

Go deeper: AI access governance

Model governance

Model governance means deciding and enforcing which models the organization may use — an approved allowlist — and routing each task to the right model, without provider lock-in.

Without model governance, any model the provider exposes is available by default — including the expensive ones, the experimental ones, and the ones your organization never approved. Add to that code wired to a single vendor's API and you have two problems: no control over what may run, and lock-in, where switching providers turns into a rewrite.

At the infrastructure layer this flips with an allowlist that starts off: nothing is usable until it's explicitly approved. The catalog of available models comes live from each provider's API, not a static list that ages, and approval is enforced at the gateway — a non-approved model simply returns 403. Routing is wildcard per provider, so adding or swapping a model is configuration, not a rewrite.

The effect is that the organization decides which models may be used and routes each task to the right model, without being tied to a single vendor — control and portability in the same layer.

At Horse Labs, model governance is a global default-OFF allowlist in the governance-db, fed by the live catalog from the providers' APIs, enforced at the gateway (a non-approved model returns 403) with wildcard-per-provider routing — adding or swapping a provider is configuration, not a rewrite.

Go deeper: AI model governance

FAQ

What is enterprise AI governance?

It's the set of controls over data, cost, access and models that keep LLM usage in the company predictable, auditable and under your control — applied at the infrastructure layer, not the provider.

Is AI governance the same as compliance/GDPR?

No. Compliance is a consequence: when data, access and auditing are under technical control, meeting GDPR becomes feasible. Governance is the operational layer that makes it possible.

Talk about AI governance