Control what your AI agents do in HiBob.

Let your team build AI agents for HiBob. Bollard AI controls what each one can do, area by area.

HiBob
People Ops Agent
People Area of the accountOffReadFull use
Time off Area of the accountOffReadFull use
Documents Area of the accountOffReadFull use
Change records and export personal data
What agents can do

Set what each agent can do in every area of your account.

Each area of HiBob, like people, time off, or documents, gets one of three levels: Off, Read, or Full use. Anything not allowed is denied.

Off
No access
The agent can't open that area or see what's in it.
Read
Read-only
The agent can read records in that area, like time off or people. It can't change anything.
Full use
Read and update
The agent can read and update basic fields in that area, like a job title.

Some actions stay off until explicitly turned on

Each one touches sensitive people data or removes records for good, so it could override the limits set on individual areas.

Changing pay or sensitive fieldsRemoving peopleExporting personal data in bulk
Set up & manage

Connect once. Manage everyone from there.

Connect once, then control access person by person. No new keys to hand out.

Step 1 · Set up

Connect once, company-wide

An admin connects your company's HiBob a single time. Bollard AI lays out the areas of the account, and anything you don't allow stays out of reach for every agent.

Step 2 · Manage

Control access per person and agent

From one dashboard, set what every person and their agents can reach. Change it any time, with no new keys for anyone.

OffNo access
ReadRead-only
Full useRead and update basic fields in a single area
Example

A people ops tidy-up agent.

A people ops agent updates basic fields and can read time off, but it can't change pay or export personal data in bulk.

People Area of the accountOffReadFull use
Time off Area of the accountOffReadFull use
Documents Area of the accountOffReadFull use

Manage access

ALLOWEDPeople Ops Agent updated a record in People
ALLOWEDPeople Ops Agent read a Time off record
BLOCKEDPeople Ops Agent tried to open Documents, denied by default

Monitor activity

The security model

Top-tier security.

Bollard AI is access control for AI agents. It sits between your agents and HiBob, so they never hold your HiBob keys and never reach HiBob directly.

Everything runs through Bollard AI

Agents send their requests to Bollard AI, not to HiBob. Bollard AI checks each one against your rules and passes only the allowed requests through.

Denied by default

Every area starts off-limits, and sensitive people data is held back on top of that. An agent gets in only where you've allowed it, and anything Bollard AI doesn't recognise is refused and held for review, never waved through on a guess.

Your keys stay sealed

Your HiBob keys are sealed in a vault unique to your company and never shown again. Bollard AI unlocks them only for the instant an allowed request needs it.

Activity you can read

Every attempt is recorded in plain English: who or which agent, what they tried, which person or record, and the decision. The record is readable and can't be edited after the fact.

Questions

HiBob, answered.

Does connecting HiBob hand Bollard AI your whole account?+
Only the areas you allow. An admin connects your HiBob, and you decide which areas, like people or time off, each agent can reach. Bollard AI doesn't browse or copy your account. It sits in front of it and checks every request the agents make, passing or blocking each one.
Can an agent change pay or export our people data?+
Not unless you turn it on. Changing pay and sensitive fields, and exporting personal data in bulk, are held off by default, so an agent can update basic fields and read records without ever touching sensitive data, until you explicitly allow it.
Can an agent see more than the person who owns it?+
No. An agent reaches only what its owner reaches. An explicit Off always overrides an inherited permission.
Where do our HiBob keys live?+
Sealed in an encrypted vault, behind a key unique to your company. It's never shown again once connected, and Bollard AI unseals it only for the instant an allowed request needs it.
What happens when an agent tries something it's not allowed to do?+
Bollard AI blocks the request before it reaches HiBob, and the blocked attempt lands in the activity record with the reason.
How do we connect HiBob?+
An admin connects the company's HiBob once. Bollard AI seals the connection and lays out the areas of the account to set rules for. From then on, all management happens in the Bollard AI dashboard.
Early access

Put your team's agents to work in HiBob, without the risk.

We're onboarding our first development partners now. Tell us about your setup and we'll be in touch.