Skip to main content
AI Model Governance & Configuration provides enterprise organizations with comprehensive control over AI usage, credentials, and routing. These features enable administrators to implement security policies, manage costs, ensure compliance, and maintain centralized control over AI automation workflows.

What You Can Control

Model Restrictions, Presets & Fallbacks

Restrict which models members can use, set the default agent presets, and configure fallbacks

API Keys & Proxies

Centrally manage AI provider API keys and proxy routing

AI Proxy Routing

Route AI requests through custom proxy URLs
Together, these features provide complete governance over AI usage within your organization while maintaining the flexibility and power of Gumloop’s automation platform.

AI Model Access Control

Control which AI models your organization can use, set the default agent presets, and configure fallbacks for restricted models. These settings apply to everyone in your organization.
Available at: gumloop.com/settings/organization/models
The Models page has three tabs: Restrictions, Presets, and Fallbacks.

Restrictions

Decide exactly which models your members can use. Turn on Model access control with the “restrict models?” toggle, then pick an access mode.
Restrictions tab with a restrict models toggle, Allow Only Selected and Block Selected access modes, and models grouped by provider with allowed and denied counts
  • Allow Only Selected: members can use only the models you check. Best for compliance-heavy organizations that permit a fixed, approved set.
  • Block Selected: members can use every model except the ones you check. Best for general access with a few targeted exclusions.
Models are grouped by provider (Anthropic, OpenAI, Google, and more) with running allowed and denied counts. You can select or clear a whole provider at once, or search for a specific model.

Presets

Agents choose a model through three presets: Recommended, Smartest, and Fastest. On this tab you set which model each preset maps to for your whole organization, so members see your choices in the agent model picker instead of the Gumloop defaults.
Presets tab showing Recommended, Smartest, and Fastest presets, each mapped to a model
By default, Recommended is the best balance of speed, quality, and cost, Smartest maximizes intelligence for complex tasks, and Fastest is optimized for speed and low latency. Override any of them to standardize on the models your organization prefers.

Fallbacks

When a flow or agent references a model that is now restricted, Gumloop uses a fallback instead of failing.
Fallbacks tab with a Fallback Model selector and an Image Generation Fallback Model selector
  • Fallback Model: the model existing flows fall back to when they reference a restricted model.
  • Image Generation Fallback Model: the model used for image generation when the selected image model is restricted.

Common Use Cases

Enable Allow Only Selected, permit only models that meet your data residency and regulatory requirements (HIPAA, GDPR, and so on), and set a compliant Fallback Model so restricted references keep working.

API Keys & Proxies

Centrally manage AI provider API keys at the organization level. When configured, these credentials automatically override personal and team credentials across your entire organization. This page is also where you configure AI proxy routing (see below).
Available at: gumloop.com/settings/organization/api-keysEnterprise OAuth client configurations for services like Snowflake, Databricks, Okta, and NetSuite now live on a separate page: OAuth Configuration.
Organization Credentials Main Page

How It Works

Organization credentials follow this hierarchy:
Organization credentials always take priority over both team and personal credentials. This ensures consistent billing, access control, and compliance across all workflows in your organization.

Supported Providers

ProviderAPI Key TypeWhat You Get
OpenAIAPI KeyAccess to GPT models and OpenAI services
AnthropicAPI KeyAccess to Claude models
PerplexityAPI KeyAccess to Perplexity AI models
XAIAPI KeyAccess to Grok models

Setup Process

Add New AI Credential

Add AI Organization Credential
Click “Add Credential” and select your AI provider (OpenAI, Anthropic, Perplexity, or XAI). Choose “API Key” as the credential type.

Configure Your API Key

Enter your organization’s API key for the selected provider. Configure any provider-specific settings as needed.
Keep your API keys secure. Never share them in documentation, code repositories, or public channels.

Key Benefits

Unified Access

All members automatically use organization API keys. No need for individual key management across teams.

Cost Control

Centralized billing for all AI usage. Track consumption across teams and simplify budget management.

Security

All AI calls use audited and compliant credentials. Maintain consistent security policies across workflows.

Governance

Prevent unauthorized AI usage through personal credentials. Ensure all usage goes through approved channels.

AI Proxy Routing

Route AI provider requests through custom proxy URLs to use your own infrastructure, implement security policies, or integrate with specialized AI gateways.

Core Features

Route all requests through organization-controlled proxy servers. Direct traffic through your own infrastructure for complete control over AI interactions.
Map Gumloop model names to custom proxy model identifiers. Use your own model naming conventions while maintaining compatibility with existing workflows.
Configure different proxies for different AI providers. Customize routing based on your infrastructure and compliance requirements.

Setup Process

Access Proxy Configuration

AI Proxy Routing Overview
Navigate to the API Keys & Proxies page, find your AI provider credential (OpenAI, Anthropic, etc.), and click “Configure Proxy”.
The “Configure Proxy” button only appears for AI provider credentials.

Set Your Proxy URL

Enter your custom proxy base URL (e.g., https://your-proxy.company.com). This URL will replace the default AI provider endpoint.
Your proxy URL must be accessible from Gumloop infrastructure.

Configure Model Mappings (Optional)

Model Name Mapping
Map Gumloop model names to your proxy-specific model identifiers. For example, map gpt-4 to custom-gpt-4-enterprise if your proxy uses non-standard model names.

Common Scenarios

Corporate AI Management PlatformRoute through your corporate AI gateway for:
  • Centralized logging and monitoring
  • Unified cost tracking across all AI usage
  • Consistent security policies
  • Compliance with corporate standards

Configuration Examples

Proxy URL: https://ai-gateway.company.com/v1
Model Mappings: (none - use default model names)
Simple routing through your gateway without custom model names.
Proxy URL: https://custom-ai.company.com/api
Model Mappings:
  gpt-4 → company-gpt-4-tuned
  gpt-3.5-turbo → company-gpt-35-fast
  claude-3-opus → company-claude-opus
Map Gumloop model names to your organization’s custom model identifiers.
Proxy URL: https://eu-ai-proxy.company.com/v1
Model Mappings: (none - standard names with EU routing)
Route through EU infrastructure for GDPR compliance while using standard model names.

How These Features Work Together

When a workflow executes that requires AI, here’s what happens:
1

Model Selection

AI Model Access Control determines which models are available based on your allow/deny list configuration.
2

Credential Resolution

Organization API keys (from the API Keys & Proxies page) provide authentication, overriding any team or personal credentials.
3

Request Routing

AI Proxy Routing determines the endpoint and applies any model name mappings before execution.
4

Execution

The request is sent through the configured proxy (if any) with organization credentials to the AI provider.

Security and Compliance

Access Control

Configuring AI model access requires the Admin or Security organization role. See Organization Roles for the full assignment matrix.

Data Security

Encrypted storage for all credentials and configurations with secure transmission protocols.

Audit Logging

All administrative actions are logged for compliance and security monitoring.

Enterprise Ready

Built for organizations with strict compliance and governance requirements.

Need Help?

For additional support or questions about AI Model Governance & Configuration:

Custom Roles

Manage organizational roles and permissions

Usage Data Export

Export and analyze usage data

Organizations & Teams

Understanding organizational structure