Kivo

Data boundary

Run the check where the evidence already lives.

Enterprise Worker Deployment keeps raw workflow data in the customer environment while the hosted control plane receives metadata, verdicts, counts, hashes, and redacted categories.

Enterprise Worker contract

No hosted trace warehouse.

Metadata-only events

Worker events reject raw-content fields before they can update the run.

Run-scoped credentials

Worker credentials are HMAC-signed, time-limited, and bound to one review run.

Rotate and revoke

Operators can replace a run credential or revoke it so later events fail closed.

Customer-owned reports

Detailed claim reports stay in the customer's storage boundary.

Storage map

Separate raw evidence from control-plane metadata.

Data
Owner
Kivo-held record
Raw AI output
Customer worker
Kivo stores an output hash and run metadata.
Prompts and messages
Customer environment
Kivo stores no prompt, system prompt, user message, or chat trace.
Source documents
Customer storage
Kivo stores source counts, hashes, and optional opaque storage labels.
Claim report details
Customer-owned report store
Kivo stores artifact summaries and redacted categories.
Workflow status
Kivo control plane
Kivo stores status, timestamps, verdicts, counts, versions, and request IDs.

Allowed metadata fields

review_run_idcustomer_run_idstatusgate_verdictclaim_countunsupported_claim_countsource_hashesoutput_hashworker_versionpolicy_versionredacted_failure_categoriesartifact_summaries

Rejected raw-content fields

ai_outputpromptmessagessource_textsource_spansretrieved_contextembeddingscreenshotsuploadstool_trace

Operational proof

The pilot gate is evidence, not copy.

1

Run the worker package tests for local artifact generation and log redaction.

2

Run the HTTP + Postgres metadata-only smoke before handling customer production traces.

3

Rotate a run credential and verify the old token is rejected.

4

Revoke the active run credential and verify later events fail closed.

5

Open the app detail view and confirm it renders metadata without raw output, source spans, or claim report text.

Scope Enterprise WorkerBack to securityDeveloper security notes

Kivo

Keep the evidence boundary intact.

Use Enterprise Worker Deployment for sensitive workflows and Kivo's metadata dashboard for review status, verdicts, counts, and repair routing.