Questions worth asking.
Product, pricing, security, agency use cases, and how to join the beta. Anything not answered here? info@air-lock.ai.
What is airlock?
airlock is one connector that links every AI client your team uses (Claude, ChatGPT, Cursor, Copilot, Gemini, Claude Code) to any MCP server or OpenAPI spec. Set policy once and audit everywhere. Skills and Agents become versioned, verified objects shared across the org.
How is this different from Microsoft Agent 365 / ServiceNow / Langdock?
Microsoft Agent 365 governs the Microsoft tenant; airlock governs across vendors (Claude, OpenAI, Cursor, Copilot, Gemini, anything OpenAPI).
ServiceNow AI Control Tower is enterprise-scale with Now-Platform lock-in; airlock is mid-market priced (€19/user/month) and vendor-neutral.
Langdock / CompanyGPT is a single managed AI platform for employees; airlock is the connector across the AI clients your team already uses.
OSS MCP gateways (Kong, MintMCP) are technical plumbing without Agents-and-Skills-as-objects, project hierarchy or per-engagement audit isolation.
What's MCP?
The Model Context Protocol, an open standard for AI clients (Claude, ChatGPT, Cursor, etc.) to talk to external tools and data sources. Donated to the Linux Foundation in December 2025 under the Agentic AI Foundation. airlock is an MCP server that proxies and governs every other MCP in your org.
What's a Skill and an Agent in airlock?
A Skill is a packaged prompt or workflow (versioned, verified) that any AI client can use through airlock. An Agent is a composable object built from Skills + tool access, with fork-and-lineage so you can branch one for a client engagement and trace every version's origin.
Do you replace my MCPs and data sources, or proxy them?
Proxy. airlock sits in front of your existing MCPs and APIs. Credentials stay server-side in a vault; agents never see your real API keys. You can swap out any backend without re-onboarding clients.
Internal governance & security: one place to control AI across vendors.
The core use case. Put one connector in front of every AI client your team uses (Claude, ChatGPT, Cursor, Copilot, Gemini, Claude Code) and govern them in one place. Set policy once and it applies everywhere: approvals on destructive actions, a full audit log, a kill switch, role-based access, and credentials kept server-side in a vault so agents never see your real keys. IT and security get a single source of truth for what every person and agent can do, across vendors.
Consultant & agency collaboration: share connectors, Skills, and Agents with customers.
Consultants and agencies can collaborate with their customers through airlock, sharing connectors, Skills, and Agents while keeping access under control. Each customer engagement gets its own isolated scope (its own MCPs, Skills, policy, and audit log), so you decide exactly who can use what, revoke access at any time, and keep an audit trail of every cross-org interaction. Re-use a canonical Skill across clients with fork-and-lineage, without leaking one client's setup into another's. See Agencies & consultancies for the details.
Training & workshops: spin up a temporary setup of Skills, Agents, and connectors.
Running a training, workshop, or bootcamp? Stand up a temporary environment of Skills, Agents, and connectors so participants work in a governed sandbox: the right tools, the right guardrails, nothing they shouldn't touch. When the session ends, tear it down or revoke access in one move. No leftover credentials, no lingering access, no manual clean-up across a dozen accounts.
What does it cost?
Free for solo builders (1 user). Teams is €19 per user / month on a yearly plan, or €24 month-to-month, with unlimited everything. Enterprise is contact sales. Full breakdown on the pricing page.
What's included in the free tier?
1 user, up to 5 MCPs, unlimited Agents & Skills, organisation memory (solo scope), audit log (7-day window), community Slack support. No credit card.
Do you charge per AI call or per token?
No. airlock is priced per user per month. We never markup tokens, and we don't see them. Your LLM bills stay between you and Anthropic / OpenAI / etc.
What changes at day 90 of the beta?
Your account flips to read-only. Your data stays. You can convert to a paid tier with 50% off the first year (locked into your beta agreement), or export your audit log and walk away. No auto-billing, no surprise migration.
Where is my data hosted?
EU only. AWS Frankfurt (eu-central-1). Sovereignty is a hard filter for us. There's no US fallback.
GDPR, ISO 27001, EU AI Act: where are you?
GDPR-aligned by construction. ISO 27001 certification is in progress. EU AI Act obligations (logging, human oversight, traceability) are produced by default. Every tool call logged, every approval attributed, every Agent and Skill versioned.
Can airlock staff read my prompts or tool calls?
No, unless you ask us to. Audit logs, approval payloads, and proxied request/response data are for your auditing. We only access them when you open a support ticket asking us to investigate, or where strictly required by law.
What happens if airlock is breached?
We notify affected customers within 72 hours per GDPR Article 33. Our threat model and response runbook are designed around the proxy-as-defence pattern: credentials stay encrypted at rest in the vault and are only decrypted at the moment of API execution, so a breach of the cache exposes the least data possible.
Does my data train any LLM?
No. airlock doesn't train models, and we don't pass your data to any third party for training. Your prompts, tool calls and Skills are yours; we proxy them, we don't reuse them.
How fast can I get airlock running for a team?
First connector live in under 60 seconds for solo signup. For a team rollout: 30-min setup call with a founder, your first MCP wired together, policy rules drafted. Most beta teams ship their first governed flow on day one.
What if a tool I use isn't in the catalog?
Drop an OpenAPI spec into airlock. We generate the MCP server, OAuth-aware, governed by your policy. No engineering required. An ops manager or AI practice lead can stand up a new integration before lunch.
Can I self-host?
On demand. The default is SaaS (EU-hosted on AWS Frankfurt), but dedicated and self-hosted deployments are available on the Enterprise tier. Contact us.
Can I export the audit log?
Yes. Every audit event is SIEM-exportable (JSON / CEF) from day one. Push to Splunk, Datadog, Elastic, your S3 bucket, wherever you keep your security telemetry.
Can we white-label airlock for our clients?
Yes. White-label and multi-tenant deployments are available on the Enterprise tier. Contact us to discuss.
Can we keep each client engagement isolated?
Yes. Project hierarchy with inheritance. Each client gets its own scope: MCPs, Skills, policy, audit log. Org defaults flow down; project overrides can only tighten policy, never loosen it.
Can we re-use the same Agent or Skill across multiple clients?
Yes. Fork-and-lineage: the canonical Skill stays in the org library; each client engagement gets its own version trail. Roll back per-client without affecting the shared baseline.
Do you have a reseller / partner program?
In design. If you sell AI delivery work to clients and airlock would make your delivery more governable, we'd love to talk early. Drop us a line at sales@air-lock.ai.
Can we attribute cost back to each engagement?
Yes. Per-user pricing scoped per workspace plus per-project usage reports. Cost rolls up cleanly to engagement P&L and matches how consultancies bill clients.
How do I get into the limited beta?
We curate 10 participating companies at a time. Apply on the beta page. We review applications weekly and reply within 5 business days.
Still have questions?
Email info@air-lock.ai or DM the founders on LinkedIn. During the beta you get a direct line: answers in hours, not tickets.