Formal is an AI-powered Privileged Access Management (PAM) solution designed for modern, data-driven organizations. It provides a secure, transparent, and policy-driven way to control how identities (AI agents, users, and machines) interact with sensitive systems such as databases, SSH, Kubernetes clusters, and APIs.At the heart of Formal is the Connector—a protocol-aware proxy that you deploy within your own network. All requests flow through this Connector, which allows teams to enforce security and compliance policies directly in the data path. Clients talk through the Connector to access resources.Using the Control Plane, you gain visibility into the requests, responses, and sessions going through the Connector. You can then write policies that are evaluated against the traffic going through the Connector to perform actions (masking, blocking, filtering) against requests, responses, and sessions.
You can use Formal to restrict the kinds of SQL queries your engineers can make to your databases while masking and redacting the data as it leaves the DB:You could enable local Github MCP servers to make some HTTP requests to the Github API but not others:You can monitor SSH sessions to your bastions for anomalous behavior and have Formal automatically classify the risk level:
