Skip to content
Execlave
Sign in

Help & Support

Last Updated: April 2026

Find answers to common questions below, or reach out to our team for personalized help.

Frequently Asked Questions

General

What is Execlave?
Execlave is an AI agent governance platform that gives you full visibility and control over every AI agent in your organization. It traces every action agents take, enforces policies before violations happen, and generates compliance reports from your actual operational data — covering SOC 2, HIPAA, GDPR, ISO 27001, and the EU AI Act.
Who is Execlave for?
Execlave is built for engineering teams, security teams, and compliance officers at organizations deploying AI agents in production. Whether you have 5 agents or 500, Execlave provides the governance layer between your agents and the actions they take.
How does Execlave integrate with my existing agents?
Execlave provides SDKs for TypeScript/JavaScript and Python. You wrap your agent's tool calls with the Execlave SDK — typically 3–5 lines of code per tool. The SDK sends execution traces to Execlave and enforces policies in real-time before the action executes. No changes to your agent's core logic are required.
Does Execlave work with any AI framework?
Yes. Execlave is framework-agnostic. It works with LangChain, CrewAI, AutoGen, custom agents, and any system where AI agents call tools or APIs. The SDK intercepts at the tool call level, not the framework level.
What happens if Execlave is down? Will my agents stop working?
No. The SDK is designed with a fail-open mode by default — if Execlave is unreachable, agent actions proceed normally and traces are queued locally for later delivery. You can configure fail-closed mode for high-security environments where you'd prefer agents to halt rather than operate ungoverned.

Policies & Enforcement

What types of policies can I create?
Execlave supports 11 built-in policy types: cost limits, record count limits, PII access controls, prompt injection scanning, action approvals, external API call restrictions, data restrictions, access control, budget caps, quality thresholds, and output classification. You can also define custom policies with plain-English descriptions that are evaluated using semantic analysis.
What enforcement modes are available?
Four modes: Block (prevent the action entirely), Require Approval (pause and wait for human approval), Warn (allow but flag the violation), and Monitor (log silently for audit purposes). You can change enforcement modes at any time without redeploying your agents.
How do policy variables like restricted_words and denied_pii_types work?
When you create a policy, each policy type has configurable parameters. For example, a PII policy lets you specify which PII types to block (e.g., ssn, credit_card, email). A content restriction policy lets you define restricted_words that will trigger the policy. These are set during policy creation in the wizard and stored as part of the policy's threshold configuration.
Can I require human approval for specific agent actions?
Yes. Create a "Dangerous Actions" policy with enforcement mode set to "Require Approval." When an agent attempts a restricted action (e.g., delete, export, publish), the execution pauses and appears in the Approvals queue. A team member with the appropriate role can then approve or deny the action.

Traces & Monitoring

What data does Execlave capture in traces?
Each trace records the agent name, the tool/action being called, input parameters, output results, execution duration, token usage, cost, and which policies were evaluated. Traces are immutable and tamper-evident — they form your audit trail for compliance.
How do I specify tool names for traces?
Tool names are passed when you instrument your agent with the SDK. When wrapping a tool call, you provide the tool name (e.g., database.query, email.send, file.delete). Use descriptive, dot-separated names so policies can match on them. The SDK reference in your dashboard has complete examples.
How long are traces retained?
Trace retention depends on your plan. Free tier retains 7 days, Pro retains 90 days, and Enterprise offers custom retention periods up to unlimited. All plans support trace export for long-term archival.

Compliance

Which compliance frameworks does Execlave support?
Execlave generates compliance reports for SOC 2 Type II, HIPAA, GDPR, ISO 27001, and the EU AI Act. Reports are generated from your actual operational data — active policies, execution traces, audit logs, and team configurations — not manual questionnaires.
Are compliance frameworks automatically linked to policies?
When you create policies, the compliance report engine automatically maps them to the relevant framework controls. For example, a PII access policy maps to HIPAA §164.312 (Technical Safeguards) and GDPR Art. 25 (Data Protection by Design). You don't need to manually tag policies with frameworks.
Can I use Execlave reports in a real audit?
Execlave reports provide evidence and documentation that supports your audit. They are designed to be presented to auditors as supplementary evidence alongside your other compliance documentation. The reports include control assessments, evidence summaries, and remediation recommendations.

Get in Touch

Technical Support

Product help, troubleshooting, billing questions, and account issues.

support@execlave.com

Documentation

API reference, SDK guides, integration examples, and architecture docs.

Available in your dashboard under Docs

Security Reports

Report security vulnerabilities responsibly. Do not open public issues.

security@execlave.com

Security Vulnerability Disclosure

If you discover a security vulnerability in Execlave, please report it responsibly. Do not open a public GitHub issue for security vulnerabilities.

How to Report

Email security@execlave.com with:

  1. A description of the vulnerability
  2. Steps to reproduce
  3. Potential impact
  4. Suggested fix (if any)

What to Expect

  • Acknowledgment within 48 hours of your report
  • Status update within 5 business days with an assessment and timeline
  • Fix and disclosure — we aim to patch confirmed vulnerabilities within 14 days and will coordinate with you on public disclosure timing

Data Subject Requests

To exercise your rights under GDPR, CCPA, or other data protection laws (access, rectification, erasure, portability):

  • End users of a customer's AI agents: Contact the customer organization directly — they are the data controller.
  • Execlave platform users: Email privacy@execlave.com or submit a request through your organization's Owner or Admin in the dashboard.

We respond to valid requests within 30 days (or within the timeframe required by applicable law).

Expected Response Times

Inquiry TypeResponse Time
Security vulnerabilities48 hours (acknowledgment)
Privacy / data subject requests30 days
Technical support (paid plans)4 hours
General inquiries2 business days