Don't ship AI
you can't govern
The compliance layer for production AI. One SDK to intercept every LLM call, enforce policies in real-time, and prove it to regulators.
pip install overruleBuilt for teams that can't afford blind spots
Self-identify in seconds: if you ship AI in production, this layer is for you.
AI SaaS teams
Ship fast without guessing policy coverage. Guard every model request, response, and tool call by default.
Enterprise internal copilots
Give security and legal confidence with active enforcement plus auditable traces across every interaction.
Regulated AI products
Prove runtime controls to auditors with structured evidence instead of static policy docs and promises.
Three steps. Zero config.
No infrastructure. No sidecars. No proxy. Just import and call.
Install
Wrap your LLM calls
Every call is governed
Request → Guard → Policy checks → Provider → Event pipeline
Governance runs inline with your application path while telemetry ships asynchronously.
Request
Guard
Policy checks
Provider
Event pipeline
Built for teams shipping
AI to millions
Not a prototype. Not a wrapper. Production infrastructure.
Fail-Open Architecture
SDK errors never crash your application. Policy failures degrade gracefully — your uptime is sacred.
Sub-Millisecond Evaluation
Policies run locally with optimized pattern matching. No network hop, no cold start, no latency tax.
Complete Audit Trail
Every AI decision captured — input, output, policies applied, violations detected, latency. Article 13 compliant.
Multi-Provider Native
OpenAI, Anthropic, or any LLM. Swap providers without touching governance logic. One SDK rules them all.
Custom Policy Engine
PII, injection, toxicity — built-in. Need custom rules? Subclass BasePolicy and ship in minutes.
Production Resilience
Circuit breakers, exponential backoff, dead-letter drops, buffer caps. Built for 99.99% uptime.
From fragile AI behavior to provable control
Without Overrule
Auditability
No complete audit trail across AI and tool calls
Risk handling
Risky output can pass unnoticed into product flows
Policy operations
Ad-hoc checks fragmented across app code
With Overrule
Auditability
Structured intercept events with model, policy, and violation data
Risk handling
Violations trigger explicit blocking and surfaced exceptions
Policy operations
Central policy engine with reusable governance rules
SOC2-style resilience primitives
Fail-open
SDK errors won't crash your production request path.
Circuit breaker
Transport failures trigger cool-down instead of cascading retries.
Buffer cap
Bounded in-memory queue protects service stability under pressure.
Graceful shutdown
Pending events flush on lifecycle shutdown hooks.
Compliance is not
a feature request.
It's a countdown.
Articles 13 and 14 require transparency, logging, and human oversight for high-risk AI systems. “We didn't have the tooling” is not a defense when the auditor arrives.
Overrule gives you the infrastructure to prove compliance with real data — not just a checkbox on a PDF.
- Full audit trail of every AI decision
- Policy enforcement provably active at all times
- Input and output content monitoring
- Exportable compliance reports for regulators
- Real-time violation detection and alerting
- Structured logs mapped to EU AI Act articles
Requirements mapped to runtime controls
Turn policy intent into concrete enforcement and audit evidence.
What a governed event looks like in production
Concrete evidence beats screenshots and policy claims.
{
"event_type": "llm_call",
"status": "blocked",
"model": "gpt-4o",
"latency_ms": 247.41,
"input_content": "Summarize customer onboarding details...",
"output_content": "Customer SSN is 123-45-6789...",
"violations": [
{
"policy_id": "pii-detection",
"severity": "high",
"description": "SSN pattern detected in assistant output",
"blocked": true
}
],
"metadata": {
"provider": "openai",
"environment": "production",
"route": "/api/chat"
}
}Latency budget stays where it belongs: in the model call
Budget shown as representative request composition for production workloads.
Methodology note: values are representative for narrative clarity and should be benchmarked in your own workload, model choice, and deployment region.
Start free. Upgrade when visibility becomes mission-critical.
Open-source SDK
Runtime governance you can self-host and ship today.
- ✓Built-in policy engine
- ✓Custom policy registration
- ✓Provider-agnostic interception
Cloud Dashboard
RecommendedCentralized visibility, reporting, and governance operations.
- ✓Audit analytics and exports
- ✓Compliance workflow support
- ✓Operational alerting at scale
Answers to the objections every AI team asks
Ship AI you can
actually defend
Open source. Free forever for local evaluation.
Paid dashboard when you need visibility at scale.