Secure, compliant, and manageable AI-powered Revit automation designed for enterprise IT environments. Deploy with confidence using Azure AD integration, RS256 asymmetric token signing, runtime-validated SOC 2 controls, and comprehensive administrative oversight.
Comprehensive security, compliance, and management capabilities designed for IT administrators
Seamless integration with company Active Directory and multi-tenant B2B support
Enterprise-grade security requirements
Company Admin, Admin, User and dual purpose roles with dynamic Azure AD group mapping
Automatic company assignment via email domain with secure invitation tokens
Invite multiple users via email with custom messages and role pre-assignment
Automatic user authorization with revokable machine bindings
Flexible user allocation per company with real-time utilization tracking
Track user activity, last login times, and usage analytics
Your firm's data is strictly partitioned from other organizations at the database level — no cross-tenant data access is possible
Revit sessions are cryptographically bound to licensed machines via one-time nonce-protected authentication handshakes — preventing credential sharing, replay attacks, and unauthorized access
Comprehensive, tamper-evident audit logs for all significant operations — supporting compliance reviews and incident investigation
Session tokens are signed with a 2048-bit RSA private key and verified against a published public key. A compromised symmetric secret cannot forge tokens — the private key never leaves the backend server
Strict per-response Content Security Policy applied to all endpoints — including streaming responses — blocking inline script injection and unauthorized resource loading
Per-endpoint throttling with stricter limits on authentication routes (10 req/min). Distributed counters shared across instances ensure consistent enforcement at scale
Automated monitoring for suspicious export activities and compliance violations
HSTS, X-Frame-Options, X-Content-Type-Options, and Referrer Policy enforcement
All inputs are validated and sanitized server-side; all database queries are parameterized to prevent SQL injection
Security architecture follows SOC 2 principles including access control, audit logging, and availability monitoring. Controls are validated at runtime on every deployment — not checked by assumption
Data is scoped to your organization and handled in accordance with GDPR requirements. Data deletion and anonymization requests are fully honoured — including machine bindings, chat history, and all personally identifiable information
All infrastructure runs on Azure App Services and Azure SQL Database in the US — the same platform trusted by enterprise organizations worldwide
All traffic is encrypted over HTTPS with RS256-signed JWT token-based access. Tokens carry scoped claims, are bound to issuer and audience, and expire after 8 hours. The public signing key is discoverable at a standard JWKS endpoint for third-party verification
NexusAI routes all AI requests through business-grade API endpoints. Your prompts never touch consumer chat products like ChatGPT or Claude.ai, which have different data handling policies
Unlike consumer AI tools, business API providers do not use your prompts or model data to train their AI models. Your proprietary project information stays yours
All AI provider credentials are stored securely on the NexusAI backend server. End users have no access to API keys or provider credentials
Access Claude, GPT, Grok, and Gemini — all routed through the same secure backend with consistent data handling controls regardless of which model is used
Get your team up and running with NexusAI in just a few steps
Azure AD single sign-on, company creation and seat purchasing takes minutes.
Bulk email invites for users with automatic role assignment. Update role assignments anytime.
Deploy the NexusAI add-in through your standard Revit deployment process. Users authenticate automatically.
Use the admin dashboard to monitor usage, manage seats, and ensure compliance across your organization.
Sign in with Microsoft to create your company profile, purchase seats, and deploy NexusAI across your organization. Founders Program pricing — 50% off for 12 months — is available now.
Questions or need onboarding support?
[email protected]