Security

Security posture

A forwardable overview for platform and security teams evaluating Blackridge Runtime Gateway.

ModePass-through gateway
PayloadsNo retention by default
FailureFail-open bypass
StartOne workflow
Runtime gateway

In the path, out of the way.

Blackridge Runtime Gateway is a pass-through proxy for AI provider traffic. It records request metadata for attribution; it does not modify, reroute, or block requests today.

01Your appAI request leaves one scoped workflow
02BlackridgeMetadata attribution and lineage
03ProviderTraffic proceeds unchanged
Data handling

No payload retention by default.

No credentials stored beyond what routing requires, encrypted at rest. No training on customer data, ever.

Failure behavior

Fail-open.

If the gateway is unreachable, traffic proceeds directly to the provider. A documented bypass path lets you remove Blackridge from the path in minutes, unilaterally.

Performance

Single-digit-ms overhead.

Single-digit-millisecond added latency at p99 under design-partner load. We publish overhead numbers to partners; ask on the call.

Blast radius

Start narrow.

Start with one non-critical workflow. Expand only when your numbers convince you.

Deployment

Design-partner deployments are scoped case by case. We support gateway deployment for a single workflow first, then expand only after security and platform teams approve the path.

Compliance roadmap

SOC 2 is planned with the first enterprise partner. We will share current security documentation under NDA.