When the data can’t leave the building.
The same product, deployed inside your VPC. Same daemon binary, same dashboards, same reports. Every byte stays in infrastructure you control. The audit trail to prove it is included.
We respond within 1 business day · No sales script · Technical conversation first
Runs where your data lives.
Deploy via Docker Compose or Helm. PostgreSQL on your own RDS or managed Postgres. The daemon runs on developer machines as normal — it syncs to your self-hosted Cloud instance, not ours.
Up in 20 minutes.
One docker-compose.yml, one docker pull, running in 20 minutes. PostgreSQL included or BYO. Perfect for small teams that want full data residency without a platform team.
For platform teams.
Helm chart with configurable replicas, PVC for report storage, HPA on API pods. Drops into your existing cluster without new ingress controllers.
For classified environments.
Signed Docker image delivered via S3 presigned URL. No outbound internet required at runtime. Compatible with SCIF and IL4 environments.
Architecture · self-hosted deployment
Built for procurement.
Every enterprise purchase requires a security review. We’ve done the work upfront.
SOC 2 Type II in progress
Audit underway. Report available to enterprise prospects under NDA. Controls cover access, availability, and confidentiality.
Data never leaves your perimeter
On-premises deployment means prompts, responses, and cost data stay inside your infrastructure. Nothing routed through Halton Labs.
Encryption at rest and in transit
AES-256 at rest, TLS 1.3 in transit. Key management via your own KMS (AWS KMS, GCP Cloud KMS, HashiCorp Vault).
Compliance checklist
- SSO (SAML 2.0 / OIDC)
- SCIM provisioning
- Audit log export (SIEM)
- Role-based access control
- Data Processing Agreement (DPA)
- Custom data retention policy
- Private Slack / Teams channel
- SOC 2 Type II (in progress)
- ISO 27001 (roadmap)
Controls that satisfy your InfoSec team.
Compliance frameworks, data residency requirements, and identity policies that regulated industries actually need.
Your VPC. Your keys.
Deploy via Helm or Terraform. PostgreSQL on your own RDS or managed cluster. Object storage in your S3 bucket. We never see prompts, responses, or request metadata. The signing key for daemon pairing lives in your KMS.
SAML, SCIM, audit log.
Plug into Okta, Azure AD, or JumpCloud. Auto-provision and de-provision engineers via SCIM. Every access event — login, export, report share, policy change — surfaces in a streaming audit log you can pipe to your SIEM.
Dedicated channel. Formal SLA.
Slack Connect or Teams. 99.9% uptime SLA on the self-hosted management plane. On-premises deployments follow your maintenance windows. Annual security review included. SOC 2 Type II available on request.
From signed contract to first reading in under a day.
Helm chart or Terraform
We ship a production-ready Helm chart and Terraform module. Point it at your Kubernetes cluster or ECS. One values file to configure.
Your Postgres, your S3
The backend writes to a Postgres instance you provision. Reports and exports land in your S3 bucket. No shared storage.
Connect your daemons
Developers run halton-meter cloud connect --base-url https://your-internal-url. The daemon pairs in seconds.
First reading appears
Traffic starts flowing. Spend is attributed. Your team sees the dashboard on day one.
Start a technical conversation.
No demo decks. No account executives. Tell us about your deployment environment and we’ll respond with a reference architecture and a deployment timeline estimate.
operator@haltonlabs.com — include your VPC setup, team size, and any compliance requirements. We respond within one business day.
The numbers that come up in sales calls.
< 4 hours
Typical time from contract signed to first reading in the dashboard
0.30%
Largest reconciliation variance logged — across Anthropic, OpenAI, Gemini, and Groq — on a six-figure annual spend.
0 prompts
Prompts or responses stored by Halton Labs infrastructure. Zero. The proxy reads metadata only.
Frequently asked.
Business+ is our cloud-hosted tier — your data lives in our eu-west-2 infrastructure, we handle backups and uptime. Enterprise is a self-hosted deployment: you run the stack on your own infrastructure and we provide the software, documentation, and support SLA.
No. The daemon is open-source and version-agnostic with respect to the Cloud backend. The only config change is setting the backend URL to your internal deployment rather than api.haltonmeter.com.
Yes. We provide a time-limited licence key for the management plane that lets you run a full self-hosted deployment for 30 days. No card required for the trial.
The 99.9% SLA covers the Cloud management plane API and dashboard availability. It does not cover the daemon (open-source, no SLA), or your own infrastructure components (PostgreSQL, object storage). We provide runbooks and on-call guidance for all components.