Hey Product Hunt!
I'm Uditanshu, and I spent months building the "wrong" product, a persistent AI memory layer. During every user interview, I heard the same roadblock:
"We'd love to ship agents, but our CISO won't sign off. The LLM can see everything in the DB."
Why? Because an LLM agent with database access doesn't respect row-level permissions or user privacy. It's all or nothing.
So I pivoted and built Custosa, a runtime permission layer that sits between your data and the LLM, enforcing access control before context ever reaches the model.
I'd spent years handling exactly this kind of problem. As a Founding Engineer at SlashPay (acquired), I built systems around sensitive financial data. As an NSF Fellow in AI Security and HPC at T3 ciders, I researched how to make AI systems trustworthy at scale. This was the problem I was meant to solve.
How it works:

Runtime Policy Enforcement: sits between your data and the LLM
Context Filtering: scrubs data based on user permissions before it hits the model
Compliance-First: HIPAA, SOC 2, ITAR, FERPA-ready out of the box
Zero Friction: drops into your existing RAG or agent pipeline

We've already secured signed LOIs across various regulated industries.
I'm here all day. Roast the tech, poke holes, or tell me: What's the #1 security concern stopping you from deploying an AI agent to your workflow?

Join the waitlist now🚀: https://www.custosa.com/waitlist

Custosa

Permission and compliance layer for Enterprise AI

Permission and compliance layer for Enterprise AI