Deployment occurs within the customer’s cloud environment (AWS, Azure, or GCP), fully segregated from the shared SaaS environment.

Key Characteristics

• Customer-owned infrastructure, deployed inside their VPC/VNet
• Full control over networking, access policies, firewall settings, and IAM
• Integration with internal systems via private connections (PrivateLink, VPC Peering, ExpressRoute, DirectConnect)
• Compliance with internal security baselines and cloud governance frameworks
• Flexible scaling with customer-controlled limits and quotas
• Optional customer-managed encryption keys (CMK)

Best For

• Enterprises with strict compliance or internal security requirements
• Organizations that must integrate deeply into private systems
• Regulated industries that require full control of cloud environments