NorthBeams Monitor

Discover AI tools your team uses. Flag credentials, PII, source code in prompts. Classifier runs in your browser.

Northbeams Monitor gives IT and security teams real visibility into shadow AI use across their organization, without compromising employee privacy. WHAT IT DOES • Discovers every AI tool your team uses. Detects 320+ AI tools by URL signature. Classifies each tool as Sanctioned, Unknown, or High-risk. • Flags sensitive prompts before they leak. When an employee submits a prompt on a supported AI site, the extension scans it locally for credentials (AWS keys, API tokens, JWTs, private keys), PII (emails, SSNs, phone numbers), source code, customer data (CSV blocks), and contract/legal language. • Privacy-first by design. The classifier runs entirely inside your browser. The original prompt text NEVER leaves your device. Only category labels (e.g., "credentials detected"), per-pattern match counts, and a redacted snippet (with detected secrets masked as [REDACTED:type]) are sent to your team's dashboard. • Real-time dashboard at monitor.northbeams.com. See AI tool usage, classify tools (Sanctioned/Unknown/High-risk), invite teammates, drill into per-incident details, export to CSV. Daily email digests of high-severity findings keep you informed without requiring you to log in. WHO IT'S FOR IT leads, security teams, and compliance officers at SMBs (50–500 employees) who need to: • Inventory AI tool sprawl for SOC 2 / ISO 27001 / EU AI Act readiness • Catch employees pasting credentials, PII, or source code into AI tools • Govern which AI tools are sanctioned vs prohibited • Show evidence of monitoring in compliance audits WHAT WE DO NOT COLLECT • Original prompt text (classification runs entirely in your browser; content stays on the device) • Browsing history outside the curated list of AI tool URLs • Page contents, keystrokes, or any data from non-AI sites • Anything from a workspace whose admin has disabled monitoring on the dashboard's Policies page VERIFIED IDENTITY Each employee gets their own personal setup code (nbm_u_…) issued from monitor.northbeams.com. The dashboard tags every event with the employee's server-verified name and email, bound to the code at issuance. There is no free-text label the employee types; the audit trail is trustworthy by construction. PRICING • Beam (free): aggregates only, up to 10 users, 60-day rolling window. Good for solo IT or small teams who just want visibility. • Lighthouse ($15/user/mo, or $12/user/mo billed annually): full per-user dashboards, classify tools as sanctioned/unknown/high-risk, block + warn enforcement, multi-user invites + RBAC, CSV exports. • Sentinel ($25/user/mo, or $20/user/mo billed annually): everything in Lighthouse plus immutable signed audit logs, SOC 2 / ISO 27001 / EU AI Act / HIPAA evidence packs, MDM-managed deployment (Intune, Jamf), public REST API, quarterly executive risk-audit report, priority email support. • Fleet (custom): enterprise contracts, SSO, custom data residency. Every workspace starts with a 14-day Sentinel trial. No credit card required. Cancel any time. GETTING STARTED (3 ways) A. Sentinel installer (recommended). Run the desktop sentinel, paste your setup code once at install. The sentinel writes a Chrome managed-storage policy that auto-pairs the extension on next browser launch. B. Dashboard auto-pair. Open monitor.northbeams.com/extension/setup, click "Pair installed extension." We push the code to the extension via Chrome's externally_connectable channel. No copy-paste. C. Manual. Click the extension's toolbar icon → Settings → paste your code from monitor.northbeams.com/extension/setup. Privacy policy: https://northbeams.com/privacy Terms of service: https://northbeams.com/terms Support: hello@northbeams.com