If your question is not below, write to [email protected] and we send a written answer within one business day. The eight categories below cover the questions buyers ask most often.
How long does install take? Bash or PowerShell, one line. Read-only deploy completes within ten minutes against a single cloud subscription. The license server validates the token, CONDUCTOR probes for Reader / SecurityAudit permissions, and the first scan starts.
Do I have to install agents on every VM? No. TITAN AI runs against your cloud control plane (Azure Resource Graph, Azure RBAC, Azure RBAC) and your platform APIs. Workload-level agents only land if you opt into SCANNER (IDS/IPS) or LEGACY (EOL host coverage).
Will TITAN AI ever write to my environment without my consent? No. Trial and Audit tiers ask for read-only roles only and FORGE is not spawned. Fix tiers ask for Contributor / PowerUserAccess, but every fix is gated by a per-finding [y/N] consent prompt.
Is the price negotiable? The first five customers per vertical are eligible for the Founding Customer program with preferred terms in exchange for a reference call after ninety days. Multi-year contracts receive additional discounts. Contact sales for details.
What is included in each tier? Launch is the cloud-audit and compliance core. Cloud Pro adds pen testing, DLP, shadow-AI detection, and consent-gated optional remediation (opt-in) across Azure cloud. Vertical packs available for Healthcare, Telecom, Banking, and Government. AIRLOCK is an add-on on any tier. Contact sales for pricing.
Why is BANKING priced higher than HEALTHCARE? Vertical pricing reflects the depth of detection logic in each pack. The banking pack ships AML transaction monitoring, real-time fraud scoring, and KYC / CDD / EDD workflow on top of cloud security; the incumbent stack (Verafin + NICE Actimize + Featurespace + Sumsub) runs well over Custom per year. Contact sales for tier pricing.
Are you SOC 2 certified? Not yet. Our SOC 2 Type II observation period begins at first paying customer; the report is targeted for Q1 2027 covering the prior six-month window. We will not list a certification we do not hold.
Do you sign a HIPAA BAA? Yes. Our BAA template covers the Security Rule technical safeguards, the breach-notification process, and the subcontractor BAA chain. Available at contract signing for any Healthcare customer.
Is the patent a credential? No. USPTO 19/645,524 is a filing receipt; we list it for traceability, not as a moat. The actual moat is the code, the live-proof evidence, and the customer references we accumulate over time.
What ships in the Healthcare bundle? HIPAA Security Rule controls, HITRUST CSF v11 mapping, PHI exfiltration monitoring, ePHI access alerts with break-glass workflow, BAA templates, and clinician-readable quarterly reports. custom pricing.
What ships in the Banking bundle? AML transaction monitoring with SAR drafting, real-time fraud scoring, KYC / CDD / EDD workflow, beneficial-ownership tracing, PEP screening, and PCI / FFIEC / GLBA / SOX control coverage. custom pricing.
What ships in the Telecom bundle? TCPA consent tracking, CPNI auditing, STIR / SHAKEN attestation, revenue-leakage detection, and FCC filing automation. custom pricing.
What is AIRLOCK? The deployment mode that runs the full agent fleet without any outbound internet calls. Local LLM (Ollama) for reasoning. Pre-activated license. Evidence export through a one-way diode or USB. +custom pricing add-on on any tier.
When do I need AIRLOCK? FedRAMP High, CMMC Level 2, classified networks, banking DMZ, hospital secure enclaves, and air-gapped factory networks. Anywhere outbound API calls are not allowed.
What is TITAN AUDIT? A standalone compliance evidence collector that emits per-control PDF and DOCX evidence across nine frameworks (SOC 2, HIPAA, HITRUST, PCI, ISO 27001, NIST, FedRAMP, CMMC, DORA). Custom pricing. Sold separately from the platform tiers. Contact sales for details.
How is this different from Vanta and Drata? Vanta and Drata collect evidence as pass / fail. TITAN AUDIT emits the underlying configuration as visual proof, with cross-mapped controls and the audit-document format auditors actually accept. Plus the prioritization, MITRE ATT&CK mapping, and consent-gated remediation playbooks Vanta does not ship.
Where does the data live? Findings render to your storage. We do not copy customer data into TITAN AI infrastructure. License-enforcement metadata is stored in the Cloudflare Workers KV in our control plane.
Can you support EU customers? Yes. GDPR DPA available. Sub-processor list published. SCCs as the primary data-transfer mechanism today, BCRs roadmapped.
Do you support customers outside the US and EU? Yes; we have run pilots in Canada, the UK, the UAE, and Singapore. ME / APAC support is currently US-hours only; we add regional time-zone coverage at the Enterprise tier.
What is the founding-customer offer? Twenty-five total spots: five per vertical (Cloud, Healthcare, Banking, Telecom, Government). 20% off Year 1, list price Year 2 onward, direct Founder access, roadmap influence, in exchange for a reference call after ninety days.
Who is eligible? Any company that signs an annual contract on a paid TITAN tier within the founding cohort window. We close the cohort once five spots are claimed in each vertical.
Read-only scan. No credit card. Full evidence pack on every finding.