Features
Everything that makes up Gateco's permission-aware retrieval layer — search modes, answer synthesis, identity provisioning, encryption, and authorization models.
Four search modes. One policy enforcement point.
Vector similarity, BM25 keyword ranking, RRF hybrid fusion, and regex grep — all routed through the same deny-by-default policy engine with a unified audit trail.
Learn more →Answers from allowed chunks only. Never from denied ones.
Grounded Answers retrieves policy-filtered chunks, passes them to an LLM, and returns a cited answer — with no denied content ever entering the model context. Three outcome states: answered, no_access, insufficient_context.
Learn more →Your IdP provisions. Gateco enforces.
SCIM v2 inbound provisioning syncs user and group lifecycle events from any SCIM-compliant identity provider directly into Gateco's principal model — so access changes take effect within seconds of an IdP update.
Learn more →Your credentials never leave your KMS context.
Connector credentials and LLM API keys are encrypted with AES-256-GCM envelope encryption. Each organization's data encryption key is wrapped by your AWS KMS customer master key with a per-tenant EncryptionContext — the KMS enforces tenant isolation at the cryptographic layer.
Learn more →When in doubt, deny.
Gateco denies retrieval requests whenever a policy evaluation cannot complete — a timeout, a misconfigured condition, a missing dependency. The decision is logged. No silent allows, no ambiguous outcomes.
Learn more →Policies that know who owns what.
ReBAC policies check direct relationships between principals and resources — owner, assignee, project member. One condition. No role explosion. Available on Team and above.
Learn more →Claude Desktop and Cursor, connected to your secured knowledge base.
The Gateco MCP server exposes six tools that give Claude, Cursor, and any MCP-compatible host policy-enforced access to your vector databases. Denied content never surfaces in tool output.
Learn more →Not sure which features you need? Talk to the team or compare plans.