Architecture
Built so your security team says yes.
Bolt and Aeira are designed for the enterprises that can't compromise on either. Below is the architectural posture at the level a buyer needs to evaluate fit. Detailed component briefs, security architecture decisions, and patent-protected implementation specifics are shared under NDA during pilot evaluation.
Bolt — Enterprise Agent Platform
An agent runtime built for durability and trust.
Inside your perimeter
Self-hosted on AWS, Azure, GCP, on-prem, or fully air-gapped. Identity flows through your existing IdP (SAML, OIDC, JWT). Your data, prompts, and responses stay inside your network — or, in the managed tier, inside a Sparcle-operated environment governed by an MSA + DPA with zero-retention guarantees from upstream LLM providers.
Multi-layer security pipeline
Every prompt and response passes through an 8-layer pipeline covering identity validation, PII detection, policy guardrails, rate limiting, caching, audit logging, secrets management, and privacy-preserving context handling. The pipeline is patent-pending; specific layer implementations are reviewed under NDA.
Bring your own LLM
OpenAI, Anthropic, Bedrock, Vertex, Ollama, NVIDIA NIM, or your own fine-tuned model. Hot-swappable. With your own keys (BYOK), there's zero token markup — you burn down your existing cloud commits while keeping data inside your perimeter.
Durable agent lifecycle
Long-running agents survive process restarts, suspend on webhooks or timers, resume cleanly when results arrive. Sub-agent isolation, cancel cascades, heartbeat-leased multi-pod orchestration. Built for the work that doesn't finish in 5 seconds.
Aeira — Compliance-Grade Data Plane
The data plane your auditor signs off on.
Identity-bound access
Every query is automatically filtered to what the calling user is entitled to see — region, department, sensitivity clearance, role — derived from your existing IdP. Your AI agents and your auditors see the same answer. No bypass mode for callers.
Provable erasure
When a tenant invokes the Right to be Forgotten under GDPR, or you need HIPAA-compliant erasure of restricted records, Aeira gives you cryptographic proof — not just a deleted row. Auditor-acceptable, independently verifiable. The specific KMS posture and key-management semantics are shared under NDA.
Audit-trail responses
Every result carries the why-filtered context regulators ask for during reviews. What was shown, what was suppressed, why. The artifact a compliance team can actually point to when asked "how did you ensure this AI system honored access controls?"
Air-gap-ready by default
Deploy in your VPC, on-prem, or fully air-gapped. All indexing, search, and retrieval run inside your security perimeter — no outbound calls, no telemetry, no third-party model API calls. Federated tier supports multi-region with offline-validated licensing for environments with no inbound or outbound connectivity.
Deployment
Three operating models. Same platform.
Bolt and Aeira ship in three operating models. Same platform throughout — the difference is who runs the AI inference, who runs the data plane, and who runs the hosting.
Intellectual Property
Patent-pending architecture, verifiable today.
Three USPTO provisional patent applications cover the runtime architecture, the priority engine, and the overlay UI. Numbers and filing dates are listed on our IP page. Detailed claim descriptions, novelty analysis, and implementation specifics are shared during architecture reviews under NDA.
Ready to look at the details?
Architecture briefs, security posture documentation, deployment guides, and patent claim summaries are shared during pilot evaluation under NDA. Schedule a 30-minute call and we'll cover what's relevant to your environment.