As generative AI matures from novelty to workplace staple, a new friction point has emerged: "Chaya Aye" Or "Bring Your Own AI (BYOAI)" crisis. Much like the disallowed use of personal devices in years past, developers and knowledge workers are increasingly deploying autonomous agents on personal infrastructure to manage their professional workflows.
"Our journey with Kilo Claw has been to make it easier and simpler and more accessible for people," says Kilo co-founder Scott Breitenother. Today, the company dedicated to providing portable, multi-model, cloud-based AI coding environments is moving to formalize "Chaya Aye" Layer: It’s launching KiloClaw for organizations and KiloClaw Chat, a suite of tools designed to provide enterprise-grade governance over individual AI agents.
The announcement comes at a time of high momentum for the company. Since making its securely hosted, one-click OpenClaw product for individuals, KiloClaw, generally available last month, more than 25,000 users have integrated the platform into their daily workflow.
Additionally, Kilo’s proprietary agent benchmark, PinchBench, has logged over 250,000 interactions and recently received significant industry recognition when Nvidia CEO Jensen Huang referenced it during his keynote at the 2026 Nvidia GTC conference in San Jose, California.
Shadow AI crisis: solving the BYOAI problem
Kiloclow’s inspiration for organizations stems from the growing visibility gap within large enterprises. In a recent interview with VentureBeat, Kilo leadership spoke extensively with high-level AI directors at government contractors who found their developers running OpenClave agents on random VPS instances to manage calendars and monitor repositories.
"What we’re announcing on Tuesday is Kilo Claw for organizations, where a company can purchase an organization-level package of Kilo Claw and provide access to every member of the team." Emily Shario, Kilo’s co-founder and head of product and engineering, explained during the interview.
"We can’t see any of it," the head of AI at one such firm reportedly told Kilo. "No audit log. No credential management. Don’t know which data is touching which API".
This lack of oversight has led some organizations to issue a blanket ban on autonomous agents before a clear strategy on deployment was formed.
Anand Kashyap, CEO and founder of data security firm Fortanix, told VentureBeat without seeing Kilo’s announcement. "OpenClaw has taken the technology world by storm…enterprise usage is minimal due to security concerns of the open source version."
Kashyap expanded on this trend:
"In recent days, NVIDIA (with NameClave), Cisco (DefenseClave), Palo Alto Networks, and CrowdStrike have all announced offerings to create enterprise-ready versions of OpenClave with guardrails and governance for agent security. However, enterprise adoption is still low.
Enterprises like centralized IT controls, predictable behavior, and data security that keeps them in compliance. An autonomous agentive platform like OpenClaw covers all of these parameters, and while security leaders have announced their traditional perimeter security measures, they do not address the fundamental problems of reduced attack surface. Over time, we will see an agentic platform emerge where agents are pre-built and packaged, and deployed responsibly with centralized controls, and data access controls built into the agentic platform as well as the LLMs that they call to receive instructions on how to perform the next task. Technologies such as confidential computing provide segmentation of data and processing, and are greatly helpful in reducing the attack surface."
Kiloclow is positioned as a way for organizations to tell the security team "Yes," Providing the visibility and control needed to bring these agents into the home.
This transitions agents from a developer-managed infrastructure to a managed environment, with scoped access and organizational-level controls.
Technology: universal persistence and "Swiss cheese" Method
A main technical hurdle in the current agent landscape is the fragmentation of chat sessions.
During the VentureBeat interview, Shario said that even advanced devices often conflict with canonical sessions, repeatedly leaving messages or failing to sync across devices.
Shario emphasized the security layer supporting this new architecture: “You get all the same benefits of the Kilo Gateway and the Kilo Platform: you can limit which models people can use, get usage visibility, cost control, and all the benefits of leveraging Kilo with a managed, hosted, controlled Kilo Cloud”.
To address the inherent unreliability of autonomous agents – such as missed cron jobs or failed execution – Kilo employs what Shario calls "Swiss Cheese Recipe" Of credibility. By layering additional security and deterministic guardrails on top of the base OpenClaw architecture, Kilo aims to ensure that tasks like the daily 6:00 pm summary are completed, even if the underlying agent logic falters.
This is important because, as Shario said, “the real risk to any company is a data leak, and that could come from a bot commenting on a GitHub issue or accidentally emailing a person who is about to be fired before the job is done”.
Product: Kiloclaw Chat and Organizational Guardrail
While managed infrastructure addresses the backend issue, Kiloclow Chat addresses the user experience. “It’s easy to get started with hosted, managed OpenClaw, but that’s not enough, and you still need to be on the cutting edge of the technology to understand how to set it up,” said Shario. Kilo is looking to lower that barrier for the average worker, asking: “How can we give people who have never heard the phrase OpenClause or Cloudbot an AI assistant?”.
Traditionally, interacting with an OpenGL agent required connecting to third-party messaging services like Telegram or Discord – a process that involved navigating "botfather" Tokens and technical configurations that alienate non-engineers.
“The number one barrier we see, both anecdotal and in the data, is that you turn on your bot and then you have to connect a channel to it. If you don’t know what’s going on, it’s overwhelming,” Shario said.
“We’ve solved that problem. You don’t need to set up a channel. You can chat with Kilo in the web UI and, with the Kilo Claw app on your phone, interact with Kilo without having to set up an external channel,” she added.
This native approach is necessary for corporate compliance because, as he further explained, “when we’re talking to early venture opportunities, they don’t want you to use your personal Telegram account to chat with their work bot”. As Shario said, there’s a reason why enterprise communications don’t flow through personal DMs; When a company turns off access, they should be able to turn off access to the bot.
Looking to the future, the company plans to further integrate these environments. “We’re going to make Kilo Chat a bridge between Telegram, Discord, and OpenClave, so you get all the features of Kilo Chat but can also use it in other channels,” Breitenother said.
The Enterprise package includes several important governance features:
- identity management: SSO/OIDC integration and SCIM provisioning for automated user lifecycle.
-
Centralized Billing: Complete visibility of calculation and estimate usage across the entire organization.
-
Admin Control: Organization-wide policies regarding which models can be used, specific permissions, and session duration.
-
Secret Configuration: Integration with 1Password ensures agents never handle credentials in plain text, preventing accidental leaks.
Licensing and governance: the "bot account" Sample
Other security experts say handling bot and AI agentive permissions is one of the biggest problems enterprises face today
As Eve Kontsevoy, CEO and co-founder of AI infrastructure and identity management company Teleport, told VentureBeat without seeing Kilo news: "The potential impact of OpenClaw as a non-deterministic actor shows why identity cannot be an afterthought. You have an autonomous agent with shell access, browser control, and API credentials – running on a continuous loop across dozens of messaging platforms, with the ability to write your own skills. She is not a chatbot. It is a non-deterministic actor with access to broader infrastructure and no cryptographic identity, no short-lived credentials, and no real-time audit trail tying actions to a verifiable actor."
Kilo is proposing to solve this with a major change in organizational structure: adopting the employee "bot accounts".
In Kilo’s vision, every employee ultimately has two identities – their standard human account and a corresponding bot account, such as scott.bot@kiloco.ai.
These bot detections operate with strictly limited, read-only permissions. For example, a bot can be granted read-only access to company logs or a GitHub account with contributor rights. it "ranged" The approach allows the agent to maintain full visibility of the data it needs to help, while ensuring it can’t accidentally share sensitive information with others.
Addressing concerns over data privacy and "black box" The algorithm, Kilo, insists that its code source is available.
“Anybody can look at our code. It’s not a black box. When you’re buying Kilo Claw, you’re not giving us your data, and we’re not training on any of your data because we’re not building our own models,” Shario explained.
This licensing option allows organizations to audit the flexibility and security of the platform without fear that their proprietary data will be used to improve third-party models.
Pricing and Availability
Kiloclow for organizations follows a usage-based pricing model where companies pay only for the computations and estimations consumed. Organizations can use it "bring your own keys" (BYOK) Approach or use kilo gateway credits for estimation.
The service is available starting today, Wednesday, April 1. Kiloclaw Chat is currently in beta, with support for web, desktop, and iOS sessions. New users can evaluate the platform through a free tier that includes a seven-day trial.
As Breitenother summarized to VentureBeat, the goal is to move away from "one off" Deploy on a scalable model for the entire workforce: "I think of organelles as buying kilos by the bushel rather than buying outright. And we’re expecting to sell a lot of bushels of Kilo Paw".
<a href