Integrations/Snowflake

Control what your AI agents do in Snowflake.

Let your team build AI agents for Snowflake. Bollard AI controls what each one can do, area by area.

Snowflake
Analytics Agent
Reporting schema Data areaOffReadFull use
Tables Data areaOffReadFull use
Users and roles Data areaOffReadFull use
Create and drop tables
What agents can do

Set what each agent can do across your warehouse.

Each area of Snowflake, like schemas, tables, or roles, gets one of three levels: Off, Read, or Full use. Anything not allowed is denied.

Off
No access
The agent can't see that part of your warehouse.
Read
Read-only
The agent can run read-only queries and read tables in that area. It can't change anything.
Full use
Query and write
The agent can query and write to tables in that area.

Some actions stay off until explicitly turned on

Each one removes data structures for good or hands out access, so it could override the limits set elsewhere.

Dropping databases, schemas, or tablesChanging users, roles, and grantsRemoving or resizing a warehouse
Set up & manage

Connect once. Manage everyone from there.

Connect once, then control access person by person. No new keys to hand out.

Step 1 · Set up

Connect once, company-wide

An admin connects your company's Snowflake a single time. Bollard AI lays out the areas of your warehouse, and anything you don't allow stays out of reach for every agent.

Step 2 · Manage

Control access per person and agent

From one dashboard, set what every person and their agents can reach. Change it any time, with no new keys for anyone.

OffNo access
ReadRead-only
Full useRun queries and write to tables in a single area
Example

A data analytics agent.

An analytics agent queries the reporting schema and can read your tables, but it can't drop tables or change who has access.

Reporting schema Data areaOffReadFull use
Tables Data areaOffReadFull use
Users and roles Data areaOffReadFull use

Manage access

ALLOWEDAnalytics Agent ran a query in the Reporting schema
ALLOWEDAnalytics Agent read a record in Tables
BLOCKEDAnalytics Agent tried to open Users and roles, denied by default

Monitor activity

The security model

Top-tier security.

Bollard AI is access control for AI agents. It sits between your agents and Snowflake, so they never hold your Snowflake keys and never reach Snowflake directly.

Everything runs through Bollard AI

Agents send their requests to Bollard AI, not to Snowflake. Bollard AI checks each one against your rules and passes only the allowed requests through.

Denied by default

Every area starts off-limits, and dropping data or changing access is held back on top of that. An agent gets in only where you've allowed it, and anything Bollard AI doesn't recognise is refused and held for review, never waved through on a guess.

Your keys stay sealed

Your Snowflake keys are sealed in a vault unique to your company and never shown again. Bollard AI unlocks them only for the instant an allowed request needs it.

Activity you can read

Every attempt is recorded in plain English: who or which agent, what they tried, which schema or table, and the decision. The record is readable and can't be edited after the fact.

Questions

Snowflake, answered.

Does connecting Snowflake hand Bollard AI your whole warehouse?+
Only the areas you allow. An admin connects your Snowflake, and you decide which areas, like a reporting schema or specific tables, each agent can reach. Bollard AI doesn't browse or copy your warehouse. It sits in front of it and checks every request the agents make, passing or blocking each one.
Can an agent drop tables or change access?+
Not unless you turn it on. Dropping databases, schemas, and tables, and changing roles and grants, are held off by default, so an agent can query and write where you allow without ever destroying data or handing out access, until you explicitly allow it.
Can an agent see more than the person who owns it?+
No. An agent reaches only what its owner reaches. An explicit Off always overrides an inherited permission.
Where do our Snowflake keys live?+
Sealed in an encrypted vault, behind a key unique to your company. It's never shown again once connected, and Bollard AI unseals it only for the instant an allowed request needs it.
What happens when an agent tries something it's not allowed to do?+
Bollard AI blocks the request before it reaches Snowflake, and the blocked attempt lands in the activity record with the reason.
How do we connect Snowflake?+
An admin connects the company's Snowflake once. Bollard AI seals the connection and lays out the areas of your warehouse to set rules for. From then on, all management happens in the Bollard AI dashboard.
Early access

Put your team's agents to work in Snowflake, without the risk.

We're onboarding our first development partners now. Tell us about your setup and we'll be in touch.