Security & ownership: what we will never do with your business
AI agents work inside your business — your email, your customer data, your website. That deserves more than a vague "we take security seriously." Here is exactly how KentoHQ is built, and the promises we put in writing.
What's yours stays yours
- Your domains are yours. We never register, hold, or "manage" your domain on our accounts. (Yes, this needs saying: a competitor's customers publicly report their domains being locked to the vendor's hosting account when they tried to leave.)
- Your files are yours. Everything your agents produce lives in your workspace and is downloadable any time — pages, copy, lead lists, code.
- Leave any time. Monthly terms, self-serve cancellation, no revenue share, no percentage of your ad spend.
How your data is protected
- Encrypted secrets. Every API key and password you give us is encrypted at rest in a per-workspace vault, and agents only ever see what they need for the task at hand.
- Sandboxed execution. When agents run code, it runs in an isolated container with no network access — it cannot reach the internet, other customers, or the host system.
- Tenant isolation. Every record carries your workspace's identity; agents, memories, files, and lessons from one business can never appear in another. Our test suite walks every page of the app unauthenticated to prove nothing leaks.
- HTTPS everywhere, hardened login (rate-limited, secure cookies), and nightly encrypted database snapshots.
How your agents are kept on a leash
- Verified completion. Agents can't declare their own success — the engine runs machine checks, and an independent quality judge reviews the work. Failed checks bounce the task back; the result you see is honest.
- Approval gates. Spending, sending, deleting — anything consequential waits for your yes. Allow once, always, or never; agents must obey.
- You can stop or redirect any task mid-run.
- Untrusted input is treated as data. Emails and web pages your agents read are wrapped and flagged so instructions hidden inside them ("ignore your rules and...") are ignored by design.
- No fabrication policy. Quality checks explicitly fail work that invents testimonials, statistics, or contact details.
Questions we haven't answered here? Ask — we'd rather show you than ask for blind trust.