HIPAA · SOC 2 · FINRA · EU AI Act

Runtime governance
for AI agents.

Enforce policy before actions execute. Sub-100ms. Tamper-evident audit trail. Compliance packs for HIPAA, SOC 2, FINRA, FedRAMP, and more.

Get started — 5 min Fleet deployment →
Python
TypeScript
Go
$pip install aten-thoth
from thoth import ThothClient
client = ThothClient(api_key="aten_thoth_…")
@client.instrument(intent="phi_eligibility_check")
async def retrieve_phi(patient_id: str): …
First enforcement event in <5 minutes
For Developers

SDK-first. One decorator.
Zero infra to manage.

Wrap any function with @client.instrument and Thoth handles enforcement, step-up auth, and audit logging automatically.

Python
pip install aten-thoth
TypeScript
npm install @atensec/thoth
Go
go get github.com/atensecurity/thoth-go
Quickstart guide
For IT & Security Teams

Fleet deployment via
Jamf or Intune.

Deploy governed Claude Desktop to 200+ machines in 5 steps. End users never touch the config. Governance is transparent until a violation triggers a step-up or block.

1
Deploy thoth binary via Jamf package or Intune Win32 app
2
Generate governed_claude_config.json on your IT workstation
3
Inject THOTH_USER_ID per machine — HIPAA unique user ID
4
Deploy config to ~/Library/Application Support/Claude/
5
Restart Claude Desktop — governance active, no end-user action
Fleet deployment guide Single-machine setup →
Compliance coverageHIPAASOC 2FINRAFedRAMPEU AI ActISO 42001GDPR

Everything compliance requires.

Built for security teams at regulated AI companies — healthcare, fintech, legal, federal.

Healthcare
HIPAA minimum-necessary

Session intent maps each MCP server to a workflow — agents only access what the intent allows. Satisfies §164.312(b) audit controls.

SOC 2 CC7.2
Step-up approval

Sensitive tool calls are held for supervisor approval before execution. Slack DM with one-click Approve / Block. Full evidence bundle generated.

HIPAA / FedRAMP
Tamper-evident audit trail

WORM-chained hash per tool call. Any modification to the ledger breaks the chain — tamper detection built in. Satisfies §164.312(c)(1).

Enterprise MDM
Fleet deployment

Deploy governed Claude Desktop to 200 machines via Jamf or Intune in 5 steps. No Python on end-user machines. Governance is transparent.

Onboarding
Progressive enforcement

Start in shadow mode — observe without blocking. Promote to step-up, then block as confidence grows. Never surprise your users.

Multi-framework
Compliance packs

Pre-built policy bundles for HIPAA, FINRA, SOC 2, EU AI Act, ISO 42001, and FedRAMP. Activate in one line. Customize as needed.

Start governing AI agents
in under 5 minutes.

Shadow mode is free. First enforcement event in <30 min. No sales call required.

Get started Fleet deployment →