Run the team,
not just the chats.
Twenty-plus admin, security and governance features that turn Other Me from "an AI assistant each person uses" into an AI platform you can hand to IT, legal, finance and a regulator without flinching. This is the full reference — Small Medium Teams tier and Enterprise, grouped by what they do.
Team admin — control the whole team from one screen
Nine admin capabilities that make Small Medium Teams tier actually a business tier — not just a more-expensive Pro plan.
Admin dashboard
Real-time view of messages sent, tokens consumed, most-used assistants, and per-member activity. Surface the spike before the CFO asks about the bill.
Daily usage snapshots — messages, tokens, cost and active users, per team, per day.
Cost allocation
Spend aggregated by team, role and integration. When finance asks "who is the AI spend going to?", you have an answer with numbers attached.
Spend broken down by team, role and integration — in-app or via the Team API.
Team prompt library
Save prompts that work — contract review, weekly recap, meeting-notes summary — and let every team member invoke them by slug. Owner + admins edit; members use.
Owner / admins curate the library; every member invokes by slug. API access included.
Scheduled reports
Four report types delivered to the owner or role inbox — usage summary (includes top prompts + token spend), support-ticket digest, team-activity log, compliance snapshot. Schedule each daily, weekly or monthly.
Delivered daily, weekly or monthly to the owner or a role inbox.
Document templates
Jinja-sandboxed templates for contracts, proposals and reports. Render to Markdown, HTML or .docx with team-managed variables. Safe by design — no arbitrary code execution.
Renders to Markdown, HTML or .docx in a sandbox — no arbitrary code execution.
Assistant branding
Upload your logo, set your brand colour. The assistant UI your team sees matches your company identity — useful if you expose it to customers or prospects through embeds.
Your logo and brand colour across the assistant UI — embed-ready.
Bulk user import (CSV)
Onboard up to 500 team members from one CSV. Capped at 256KB and 500 rows to stop runaway mistakes. Role, team assignment and assistant-access set in the same upload.
Up to 500 members from one CSV (256 KB / 500-row cap) — role, team and access in one upload.
Contract intelligence (roadmap 2026)
Upload a contract, get the key clauses surfaced with risks highlighted — indemnity, termination, IP assignment, data-protection addendum. Today you can do this via free-form chat on the uploaded file; the dedicated clause-extraction + risk-flag UI is on the 2026 roadmap.
Today: chat with an uploaded contract via the file panel. On roadmap: structured clause extraction.
Workspace knowledge ingestion
Ingest team documents into a shared, SCRS-scoped workspace so every member's assistant answers from the same source of truth. PII redacted on the way through.
Built on: existing SCRS team-scope · RAG over the team's collection.
Workspace — the space your team actually shares
8 users included, up to 50
£99/mo covers eight seats. Extra seats £15/mo each, up to 50 total. At 50+ you're ready for Enterprise.
10 GB per user, encrypted
Per-member encrypted document vault. Cloudinary-backed with signed 10-min URLs for previews. Keys rotate per-org on Enterprise.
Team prompt library
Save your team's best prompts, approve them, and share them so everyone uses the same wording for contract reviews, outbound notes or client updates. Consistency without the copy-paste chase.
Team chat rooms
Shared assistant spaces for specific projects, clients or departments. Each room has its own history, memory and scoped knowledge.
Per-matter / per-project scope
For regulated practices (law firms, accountancy). Restrict assistant access on a per-matter basis; only authorised team members can query a given case.
All 14 integrations
Everything on Family (Google Workspace, Zoom, Calendly, HubSpot, Zoho CRM + Books, Notion, Airtable) plus Pipedrive, Odoo, DocuSign, Xero and Jira. See all →
Security & audit — the table stakes, done right
SCRS Data Firewall
Every message runs through SCRS on the way to the model — PII detected, pseudonymised, rehydrated only in your staff's browser. Patent-pending.
Audit trail (90-day retention)
Every prompt, response, file upload, integration call logged with user, timestamp and redacted payload. Exportable when regulators or insurers ask.
Team-wide policy enforcement
Admins set rules about what data can and cannot be sent to AI models. Policies apply across the entire team automatically.
Instant offboarding
Deactivate a team member and their integration data vault is locked, with access and tokens revoked with a full audit trail (cryptographic key rotation is available on Enterprise).
UK data residency
All data stored and processed in UK infrastructure by default. GDPR-compliant lawful basis on every conversation.
No training on your data
Your conversations, files and integration data are never used to train any model — ours or the underlying providers'.
Governance — when the board starts asking questions
Six controls that turn AI from "interesting internal tool" into something your legal and security teams can sign off on.
DLP rules — block / redact / warn
Regex-based patterns evaluated on every outbound message. Three enforcement modes:
- Block: reject the message entirely. No AI call made. User sees your configured error.
- Redact: replace the match with [REDACTED] before the model sees it.
- Warn: let the message through, log a warning entry to audit.
Block / redact / warn rules enforced before any prompt reaches the model.
Approval workflows Professional+
Route sensitive prompts to an admin queue for sign-off before they reach the model. Message snapshotted at approval time; admins approve, reject or let expire after N days.
Cross-tenant-isolated approval queue; stale requests auto-expire.
SIEM audit export
Stream SCRS audit events to Splunk, Datadog, Sumo Logic or a generic HTTPS sink in CloudEvents v1.0 JSON. Cursor-based pagination guarantees exactly-once delivery; batched hourly or on demand.
Audit events streamed to your SIEM every 5 minutes (Splunk / Datadog / Sumo Logic).
Retention policies per collection Professional+
Per-collection retention windows on SCRS data — chats, files, audit events. Enforced by a daily cleanup job. Configure by regulator, insurer or client contract. Up to 7 years.
Per-collection retention windows, automatically enforced.
Bring-your-own-keys (BYOK) Professional+
Supply your own OpenAI, Anthropic, Google or xAI API keys. Encrypted at rest with AES-256-GCM per org. Your model contracts, your rate limits, your bill.
Bring your own model keys — encrypted per organisation.
Webhook endpoints & entitlement tokens
HTTPS-only, HMAC-SHA256 signed payloads on configurable event types (PII detected, audit events, compliance alerts). Entitlement tokens for short-lived cross-tenant SCRS access with audit.
Outbound webhooks and signed entitlement tokens for programmatic integration.
Access & identity — granular, auditable, IT-approved
RBAC — five roles
Owner · Admin · Developer · Viewer · Billing. Permission inheritance from owner downward; scope enforced per role on every API call.
Owner, Admin, Member and Viewer roles.
Two-factor authentication
TOTP-based 2FA with backup codes. Session-level re-verification on sensitive admin actions.
Recovery via one-time backup codes.
IP allowlisting
Restrict API key usage to specific IP addresses or CIDR ranges. Validated at key creation; enforced on every authenticated request.
Restrict API keys to specific IP ranges.
API keys with scoped permissions
Hashed SHA-256 (no raw key storage). Per-minute and per-day rate limits. Read / write / admin scopes with wildcard matching. Configurable expiry.
Scoped API keys — Read / Write / Admin.
Team invitations with expiry
Invite by email with token-based activation, 7-day expiry default. Full invitation lifecycle tracked for audit evidence.
Email invitations with role assignment.
SSO (on the roadmap)
SAML and OIDC on the 2026 roadmap — email invites with 2FA-on-every-login cover most enterprise requirements today.
Compliance — frameworks your auditor recognises
GDPR
UK / EU data protection. All tiers.
SOC 2 Type II
On roadmap — Q4 2026.
ISO 27001
On roadmap — 2027.
HIPAA
Available on Enterprise Custom — BAA + safeguards by contract.
PCI DSS
Enterprise Custom.
CCPA
Enterprise Custom.
Audit evidence packs
Generated on demand. Enterprise Custom.
Alert rules
Configurable per framework.
API & extensibility — build on top
REST API
Programmatic SCRS access with Read / Write / Admin scopes. Full OpenAPI spec — language-specific SDKs (Python, JS, Go) on the 2026 roadmap; auto-generate clients from the spec via openapi-generator today.
Webhooks
HMAC-SHA256 signed, retry logic, failure tracking. Event-type subscriptions configurable per endpoint.
SCRS pipeline builder Professional+
Visual builder for configuring SCRS processing pipelines with custom PII patterns and redaction rules.
Custom integrations
Enterprise Custom tier. Built against your internal APIs with SCRS governance and audit from day one.
Who uses these controls in practice
Law firms
Per-matter scope, DLP on client data, 7-year audit retention, offboarding with key revocation.
Accountancy practices
Read-only accounting integrations, scheduled reports to exec, audit trail matched to ICAEW / ACCA retention.
Healthcare
HIPAA, SCRS PII redaction before any model call, configurable retention, DLP on PHI patterns.
Sales teams
Team prompt library for proposals, admin dashboard for rep coaching, DLP on commercial terms.
Legal ops
Approval workflows for sensitive prompts, contract intelligence, evidence-grade audit trail.
Finance teams
Scheduled reports to the CFO, cost allocation across teams, SIEM export to your SOC.
Ready to hand this to your security team?
3-day Business trial. Full admin dashboard, all team features, integration connections included. Card at signup, no charge for 3 days.