Control what AI systems, agents, and applications can see when they touch sensitive data. Ubiq protects the values inside your databases, warehouses, and AI workflows, then uses identity and policy to decide what each requester gets at runtime: cleartext, masked, tokenized, or encrypted. Support AI without broadly exposing regulated or sensitive data.
Trusted in production by security & data teams
Independently attested
SOC 2 Type II
PCI DSS SAQ-D
CMMC 2.0 Level 1AI data access controls govern what sensitive data an AI system, agent, application, or user can see and expose when it reaches enterprise databases and warehouses. Traditional controls only decide whether a requester can reach a table or dataset. That access is too coarse: a workflow may need the dataset without needing every sensitive field in cleartext.
AI workflows reach enterprise data directly or indirectly through applications, agents, APIs, service accounts, copilots, notebooks, retrieval systems, BI tools, MCP and tool layers, and automation pipelines.
A single table, view, dataset, or warehouse query can hold both low-risk operational fields and highly sensitive values such as PII, PHI, financial data, credentials, identifiers, regulated records, or resident data.
The right data outcome should depend on who or what is asking: the user, application, AI agent, service account, API, workflow, region, data residency requirement, and policy context.
Same data. Same table or dataset. Different runtime outcomes based on identity and policy.
Database, warehouse, and table controls decide whether a user, application, service account, or AI workflow can reach a dataset. They do not decide which sensitive values should come back in cleartext. Ubiq protects the values first, then returns the right runtime outcome for each requester.
Example
Access decision
Returned to AI workflow(in cleartext)
The workflow can now expose those values through prompts, responses, logs, embeddings, vector stores, exports, BI tools, notebooks, and downstream applications.
Common challenges
Example
Protected at rest(encrypted or tokenized)
Runtime outcome by identity
The underlying value stays protected, while each identity and workflow receives only the version policy allows.
Key benefits
Database and warehouse permissions, IAM roles, row-level security, table grants, application access controls, and BI permissions all matter. But they were not designed for AI workflows that retrieve, summarize, transform, store, and redistribute sensitive data across multiple systems.
An AI workflow may need a table, view, dataset, or query result for a valid reason, but only a subset of fields may be appropriate. Table-level access can expose sensitive values the workflow does not need.
Many AI workflows access data through application identities, warehouse roles, API keys, or service accounts. Those accounts often carry broader permissions than the actual user, agent, or workflow should inherit.
The data platform may see an application, service account, tool call, or API request, while the business request originated from a human, agent, copilot, workflow, or automation path. It is hard to decide based on the real requester.
Once resident data is returned in cleartext, it can appear in prompts, logs, summaries, caches, vector stores, exports, tickets, BI extracts, and notebooks. Controls need to apply before the value is exposed.
Masking in a database, warehouse, view, or application may work for one access pattern, but AI workflows can reach the same data through APIs, services, notebooks, pipelines, BI tools, MCP and tool layers, and agents.
Most controls decide whether the requester can reach the data path. They do not decide which protected version of each sensitive value the requester should actually receive.
Ubiq reduces that blast radius by protecting sensitive values and applying identity-governed policy at runtime across applications, APIs, SDKs, SQL UDFs, databases, warehouses, data services, and AI workflows.
Access paths
AI rarely queries the database directly. It reaches sensitive data through applications, APIs, service accounts, tools, MCP-style layers, warehouses, BI systems, notebooks, and automation. The control point shifts with the architecture, so Ubiq can enforce policy at the data value level wherever the path begins.
Direct data access
Application-mediated
Agent and tool-mediated
Analytics and BI
Retrieval and RAG
The risk is not the specific path. The risk is that AI creates new ways for sensitive data to be accessed, transformed, summarized, logged, embedded, and shared. Ubiq enforces policy at the data value level so the runtime outcome stays controlled wherever the access path begins.
How Ubiq works
The same protected customer record returns a different result depending on the requesting identity, application, service account, region, or AI workflow. Ubiq evaluates identity, context, and policy at runtime, then returns only what each requester is authorized to see.
Access request
Protected customer record
Real-time evaluation
Runtime data outcome
Authorized to investigate the full customer record
Assists the customer without exposing full identifiers
Segments and joins records without original identifiers
Operates within the workflow on protected values, not cleartext
Protected once. Resolved differently at runtime for each identity.
Wherever AI systems, agents, applications, and service accounts touch sensitive data, teams use identity-governed controls to decide what each workflow can actually see.
Let copilots answer business questions while limiting which sensitive fields can be returned, summarized, or exposed in responses.
Retrieve relevant enterprise records while keeping sensitive source fields masked, tokenized, or encrypted unless policy allows cleartext.
Enforce field-level and column-level outcomes at runtime, so different users, apps, service accounts, and AI workflows hitting the same table receive different versions.
Control how resident or region-bound data is exposed based on identity, application, workflow, region, and policy, so sensitive data is not revealed outside approved contexts.
Govern what agents can reveal when they query databases, call APIs, trigger actions, use tools, or move data between systems.
Let analysts and AI-enabled analytics tools work with production-like data while sensitive values stay masked, tokenized, or otherwise protected.
Reduce the blast radius of broad DBA, admin, developer, warehouse-admin, service-account, or operator access by controlling what each identity can actually reveal.
Support development, testing, evaluation, and model workflows with realistic protected data instead of unrestricted production cleartext.
Ubiq deploys inside your own environment and integrates where sensitive data already lives, so teams adopt it without heavy operational friction.
Reuse your existing IAM, including Okta and other identity providers, so runtime data outcomes follow the identities, groups, roles, and entitlements you already manage.
Protect and reveal values through SQL UDFs and native database and data warehouse integration patterns.
Add protection directly into applications, services, agents, and workflows through SDKs and APIs.
Integrate at applications, services, and API gateways without rearchitecting how they reach sensitive data.
Apply controls where sensitive data is accessed, transformed, or returned: application backends, APIs, agents, tool layers, retrieval services, and data services.
Ubiq does not require a proxy between applications and databases or warehouses, so there is no new bottleneck to route sensitive traffic through.
Protect and reveal values without changing existing table schemas where the integration pattern allows.
Use customer-controlled key management, including HSM or KMS options, so key control stays with your team.
Database and warehouse access control and AI data access control are complementary. One controls access to systems, tables, roles, views, datasets, and query paths. The other controls what sensitive values are actually revealed once a workflow reaches the data.
Determines whether a user, role, application, or service account can access an object such as a table, view, schema, stored procedure, dataset, query, or warehouse resource.
Determines what version of each sensitive value an AI workflow, agent, application, service account, API, or user should receive at runtime.
With Ubiq, database, warehouse, and identity-governed data protection work together. The data platform can decide whether a workflow reaches the table, view, or dataset, while Ubiq decides what protected or unprotected version of each value the requester receives. It is the same principle behind dynamic data masking and vaultless tokenization, applied to AI-driven workflows, agents, service accounts, APIs, tool layers, warehouses, and pipelines.Same data. Same record. Different runtime outcomes based on identity and policy.
AI data access controls determine what sensitive data an AI system, agent, application, service account, API, or user can access and reveal when interacting with enterprise data. Instead of only deciding whether a workflow can access a table, warehouse, dataset, or system, AI data access controls determine what version of each sensitive value should be returned: cleartext, masked, tokenized, or encrypted.
AI workflows often access data indirectly through applications, agents, APIs, service accounts, notebooks, BI tools, retrieval systems, or MCP and tool layers. That makes it hard to know whose permissions should apply and whether the workflow should receive full, masked, tokenized, or encrypted values. The same sensitive data can be exposed through prompts, responses, logs, embeddings, vector stores, and downstream systems.
A table, view, or dataset can contain many types of data with different sensitivity levels. An AI workflow may need the dataset to answer a business question, but it may not need every sensitive field in cleartext. Field-level and value-level controls reduce overexposure by returning only the version of each value that policy allows.
Yes. Ubiq can use identity provider context, including Okta-managed identities, groups, roles, or entitlements, as part of the runtime policy model that determines whether a requester receives cleartext, masked, tokenized, or encrypted data.
Yes. Ubiq policies can account for the requesting identity, application, service account, API, tool path, or workflow, so data outcomes are not limited to human users alone. The real requester and purpose shape what is returned at runtime.
No. Ubiq complements database and warehouse permissions. Database and warehouse controls determine whether a requester can access a table, view, dataset, or query path. Ubiq governs what sensitive values are revealed when that access occurs.
Ubiq keeps sensitive values protected and uses identity, policy, and context to determine what version of data is returned to each requester. That helps teams reduce unnecessary plaintext exposure when data is accessed across regions, workflows, applications, AI systems, warehouses, and downstream tools.
Yes. Ubiq keeps sensitive source data protected and identity-governed before it is exposed into AI workflows. Teams can provide masked, tokenized, encrypted, or otherwise protected representations to retrieval, prompt, evaluation, and vector workflows where cleartext is not required. Identity and policy govern when source data is revealed.
Based on identity and policy, Ubiq can return cleartext, partially masked values, fully masked values, tokenized values, format-preserving protected values, or encrypted values. This enforces least privilege at the level of the data value, not just the system or table.