HookBus Enterprise bundles the five commercial subscribers regulated enterprises actually need, running on a bus built for production: hot-reload, failover groups, advanced consolidation, SLA, dedicated support.
Closed-source. On-premise or VPC. Air-gap compatible. No cloud dependency.
HookBus Enterprise ships with CRE-AgentProtect Enterprise, Auditor, DLP Filter, KB Injector, and Session Memory. Covered by one commercial licence. One SLA. One escalation path. Pick the ones you need, turn the others off.
Returns approve or deny on every tool call. Escalates to ask only when a rule requires human approval. Two-layer policy engine: L1 deterministic sub-10ms + L2 Granite LLM intent reasoning. The flagship enforcement subscriber.
SHA-256 hash-chained SQLite log of every agent lifecycle event. Tamper-evident via chain verification. CSV export per date range. Produces the event-level record your SOC 2 Type II, ISO/IEC 42001, or EU AI Act Article 12 evidence pack is built on.
Redacts API keys (OpenAI, Anthropic, AWS, GitHub PAT, bearer tokens, private keys), PII (UK NI, email, UK phone), financial data (credit card, IBAN), and infrastructure strings (connection strings, private IPs). 15 curated regex patterns. Bidirectional on tool_input and tool_result. Allowlist and ignore-pattern configurable.
Injects organisation-specific policy, compliance, and context packages into every prompt before it reaches the LLM. Rule-authoring UI. Deterministic matching. Sub-millisecond overhead.
Cross-session context recall with per-agent isolation and per-team retention. Dual sync and async subscriber. Postgres-backed. Audit-trail linked so memory recall itself is an auditable event.
HookBus Enterprise is not HookBus Light with bundles bolted on. The bus itself is tuned for production: hot-reload, failover groups, advanced consolidation strategies, richer health checks, and commercial-grade support.
Every target environment a regulated buyer will ask for, supported at day one. No architecture detour required. The product was built for this.
Runs entirely inside your data centre. No outbound connections required for decisions.
Deploys into your AWS, Azure, or GCP VPC. Private subnets only. No public endpoint required.
Both L1 and L2 decisions run locally. Granite 4 runs on CPU or your own GPU. Works fully offline.
Events, memory, audit chain, policy packs all stay where you put them. No telemetry calls home.
Agentic Thinking Limited does not currently hold third-party compliance certifications. The products are built to the evidence standards that SOC 2 Type II, ISO/IEC 42001, and EU AI Act Article 12 require, so customers can adopt them inside their own compliance programmes today. Full security posture documentation is available under NDA — see the Trust Center.
Typical annual engagement from £300,000. Built for organisations with a CISO, a DPO, and regulators watching.