Integrations

Org-level usage + cost ingestion via the OpenAI Admin API. Auto-provisions a project + service-account key on approval.

Usage + cost ingestion via the Anthropic Admin API. Auto-creates a workspace + workspace-member key on approval.

Transactional email for approval-request submissions, decisions, and budget-threshold alerts. Optional — silent no-op if unconfigured.

Incoming-webhook pings to your team channel on budget breaches and new approval requests. Optional.

Resource-level cost via Azure Cost Management API + per-deployment Application Insights for token attribution.

Cost + invocation data via AWS Cost Explorer and CloudWatch model-invocation metrics — per-account, per-model.

Spend ingested from the BigQuery billing export, attributed by Google Workspace user.

One connector covers Okta, Entra ID, Google Workspace, Rippling, OneLogin, and Ping — directory sync for users and teams, plus SAML/OIDC SSO for admin login.

Approval requests flow into ServiceNow as change tickets with full transcript and recommended model. Decision in ServiceNow syncs back to GreyScape.ai.

Requests appear as JSM tickets in the IT queue. Admins approve in JSM; the workflow finishes provisioning automatically.

Adaptive approval cards in the channel of your choice — admin clicks Approve/Reject in Teams without ever opening GreyScape.ai.

Card transaction stream filtered for ~200 AI merchant names. Each new merchant becomes a shadow-AI candidate row on the dashboard.

Same approach as Brex — corporate card transaction stream scanned for AI subscriptions outside the sanctioned list.

Pulls Productiv's existing SaaS discovery feed filtered to AI tools — pre-correlated with usage frequency and unique user count.

Surfaces AI apps installed on managed macOS laptops — Claude desktop, Cursor IDE, Raycast AI extensions, ChatGPT desktop.

Same for Windows + iOS / Android — flags AI apps on managed devices that haven't been through approval.

Scans your repositories for AI library imports (openai, anthropic, langchain, llama-index, transformers, etc.) and inline API key patterns.

Single proxy endpoint in front of every approved provider. Inspects every API call, redacts PII (emails, names, card numbers), and enforces the approved-models policy at the network edge.

DNS + URL filtering for browser-based AI tools that bypass the API — feeds shadow-AI signal and blocks unsanctioned domains.

Alternative DNS-layer enforcement for orgs already on Umbrella. Same signal feed and blocking primitives.

Live monthly chargeback push to cost-centre dimensions in NetSuite — no more manual CSV uploads.

Same chargeback push for SMB finance stacks running on QuickBooks Online.

Unified DLP labelling — GreyScape.ai publishes AI-vendor risk metadata to Purview so existing DLP policies apply consistently.

Per-vendor posture: SOC 2 / ISO 27001 / GDPR / EU AI Act, data residency, prompt retention, training-on-data toggle, sub-processors. Updated quarterly.

Stream GreyScape.ai metrics + anomaly events into Datadog so AI spend sits alongside the rest of your infrastructure telemetry.