Data & Ontology

Give agents governed business meaning.

Cortex models your business as typed objects, instances, and relationships — then governs access down to the individual property and action. An operator can read a Claim but never its policyholder's ssn. Palantir-class semantics, no lock-in.

One cortex schema · multi-tenant isolation · deny-by-default

Object Explorer
filestriggershas · restrictedPolicyholderobjectClaimobjectPayoutobjectssnread denied
ontology ▸ v3 · published · object · property · action permissions
The problem

Document RAG knows your text. It doesn't know your business.

Embedding-only retrieval can quote a PDF, but it has no concept of a Claim, who filed it, or which Payout it triggers — and no way to hide one property from one role. Cortex gives agents a structured, governed object model so every answer and every action is grounded in real business entities, not loose passages.

Object types → objects → typed linksv3 · published
Policyholder
12,481 objects
name · email · ssn — restricted
Claim
38,204 objects
amount · status · filedAt
Payout
9,117 objects
amount · method · approvedBy
Policyholder files Claim triggers Payout
How it works

Types, objects, typed links — then explore the graph.

Register object types with properties and allowed actions; create object instances; connect them with typed relationships. The Object Explorer computes the live neighborhood subgraph on demand.

  1. 01

    Define types

    Register object types — key, name, properties (jsonb), and allowedActions — as the governed schema. An object's type must exist before any instance can be created.

  2. 02

    Create objects & links

    Upsert object instances keyed by (typeKey, externalId), then connect them with typed relationships like files, triggers, belongs_to. Idempotent — safe to re-sync from live platform resources.

  3. 03

    Explore & ground

    GET /objects/:id/explore returns the neighborhood subgraph — typed nodes and relations — so agents reason over real entities, and relationship-aware retrieval beats document-only RAG.

Object · property · action permissions

Read a Claim. Never read the ssn.

Grants are rows of (role, type, property, access ∈ none/read/write). A type with no grants is ungoverned — full access. The moment any grant exists, that type flips to deny-by-default. A property grant overrides the type default; otherwise the property inherits it. Across a caller's roles, the most-permissive access wins.

  • Type-level default + per-property override (Policyholder.ssn → none)
  • Reads redact unreadable properties and set _redacted: true
  • Writes without write on the type are refused with 403
  • Action-level grants gate which actions a role may even propose
resolveAccess — role: operatormost-permissive role wins
  • Claimobject type
    readread
  • Claim.amountproperty
    readinherits read
  • Policyholder.ssnproperty
    noneoverride none
  • approve:Payoutaction
    nonedeny-by-default
GET /objects/:id ▸ ssn stripped · { _redacted: true } · POST /objects without write ▸ 403
Schema versionsdraft pending
  • v3publishedrollback → v18 types
  • v2archivedadd Invoice9 types
  • v1archivedbaseline8 types
OntologyVersionRolledBack ▸ { newVersion: 3, restoredFrom: 1 } → emitted on ontology.events
Change control

Draft, publish, roll back — with full history.

Editing the object model is never silently final. Capture the live schema as a draft, publish it (archiving the prior version), or roll the live schema back to any prior version. Rollback restores from a snapshot and records a new published version — the target version is never mutated.

  • Status machine: draft → published → archived, monotonic per tenant
  • diffSchema reports added / removed / changed types between versions
  • Publish & rollback emit OntologyVersion{Published,RolledBack} events
  • Real-Time Hub can watch the events; ADR can escalate breaking changes
Why it matters

The ontology is the difference between a chatbot and an operator.

Document-only RAG retrieves passages. A governed ontology gives agents typed entities, relationships, per-property access, and ontology-scoped actions — the foundation Palantir built Foundry on, kept inside Cortex's Trust Layer and portable across tenants and air-gapped environments.

Governed ontology (Cortex)
  • Typed objects, instances & relationships
  • Object/property/action-level permissions
  • Versioned schema (draft/publish/rollback)
  • Relationship-aware Object Explorer
  • Grounds actions in real entities
  • Portable — no proprietary lock-in
Document-only RAG
  • Loose text passages, no entities
  • All-or-nothing access to a chunk
  • No schema, no change control
  • No relationship traversal
  • Can quote, can't act safely
  • Re-embed to move it
Security & compliance

Built for least-privilege data access.

Deny-by-default object and property permissions, redaction on read, and a versioned, audited schema — aligned with the data-governance controls your reviewers already expect.

SOC 2ISO 27001ISO 42001HIPAAGDPREU AI Act

Ground your agents in your business.

Give every agent a governed object model — typed, versioned, and permissioned down to the property and action.