AI search visibility, built for your security team
DemandSphere serves enterprise teams that have to defend every vendor choice to procurement, legal, and infosec. The platform is configurable enough to fit your stack, transparent enough to clear review, and operated by a team that has been doing this since 2010.
Pass infosec review on the first pass
Most procurement holdups come from missing answers, not failed ones. We keep every document a security team asks for ready to share.
Security controls
Controls documentation and system architecture diagrams available under NDA.
GDPR and UK GDPR
Standard DPA on file, customer paper accepted. Sub-processor list with notice provisions on changes.
Encryption
TLS 1.2+ in transit. Secrets in a managed vault. Customer credentials never touch application logs.
SSO + SCIM 2.0
OIDC with Okta, Azure AD, Google Workspace. SCIM joiner/mover/leaver automation from your IdP.
RBAC
Owner, admin, member, viewer roles plus custom permission sets. Per-workspace and cross-workspace policy.
Two-factor authentication
TOTP apps and hardware keys. Admins can require 2FA across the workspace. SSO customers inherit IdP enforcement.
Your data, your pipelines
The assets your security and data teams care about most stay under their control.
and AI search
data beyond contract term
want it, not stuck with us
Data delivery, your way
Get your data the way your stack wants it: REST API, CSV and file exports, scheduled deliveries, and BI connectors. Stream straight into a warehouse you own - BigQuery or Snowflake - or pull on demand. No replicated copy of your data sitting in our system longer than necessary.
Multi-team workspaces
Separate workspaces per brand, region, or business unit. Cross-workspace reporting for the group, individual roll-ups for each team. Sub-accounts billed centrally or independently.
Data residency
Production workloads run in primary US and EU regions. Region pinning discussed during procurement and documented in your order form.
API access
REST APIs for keywords, prompts, citations, agents, exports, and admin operations. OpenAPI spec maintained. Rate-limited per workspace with documented quotas.
Data portability
Full export in standard formats throughout the contract. Deletion attestation on termination. No vendor lock-in clauses in the MSA.
Sub-processor transparency
Our sub-processor list is published with notice provisions on changes, so your vendor reviews stay current.
Connects to the systems your team already runs on
Webhooks and events
Delivery for prompt mentions, citation changes, ranking shifts, and agent run completions. Replay queue keeps subscribers consistent.
BI tools
Looker, Tableau, Power BI, and Hex connect through the API or a warehouse you own. Sample dbt models and dashboards available on request.
Scheduled exports
Analytics and report exports on a schedule to BigQuery, cloud storage, or your BI stack. Standard formats, documented schema.
Named people, real response times
Dedicated customer success
One named contact through the lifecycle. Quarterly business reviews with usage analysis, optimization recommendations, and roadmap visibility.
Uptime and response
Tiered support response by severity. Status page on a separate provider so you can verify state independently.
Managed services add-on
Keyword strategy, prompt library design, monthly reporting, agent build-out, and competitive analysis run by DemandSphere strategists. Enterprise plans only. See managed services →
Trusted by global enterprises and agency groups
Global retailers, agency holding companies, and consumer brands run search and AI visibility on DemandSphere.
Procurement-friendly by default
No credit card requirement. The order form your team signs is the contract.
Annual and multi-year
Annual default. Multi-year terms with rate locks for committed spend.
PO and invoice
Standard PO acceptance. NET 30 default, NET 60 by arrangement. ACH and wire accepted.
Custom MSA and DPA
Customer paper accepted for MSA, DPA, security addendum. Legal review on a standard SLA.
Volume terms
Tiered pricing on keywords, prompts, sites, seats. Custom packaging for multi-brand or holdco rollouts.
FAQ
Controls documentation, system architecture and data flow diagrams, and our DPA are available under NDA. Request the security packet and we will share it once an NDA is in place.
Production data is stored within our cloud provider's primary US and EU regions. You access it the way your stack prefers - REST API, CSV and file exports, scheduled deliveries, or BI connectors. Direct streaming into a warehouse you own (BigQuery or Snowflake) is available as an add-on for teams that want analytics to land in their own environment.
Yes. Okta, Azure AD / Microsoft Entra ID, and Google Workspace via OIDC are supported on Enterprise. SCIM 2.0 user and group provisioning is included. Role-based access control and two-factor authentication ship with every Enterprise workspace.
Two-factor authentication is supported via TOTP authenticator apps and hardware keys. Workspace admins can require 2FA across all users in their workspace. SSO customers inherit 2FA enforcement from their identity provider.
Yes. System architecture diagrams, data flow diagrams, and network topology are part of the security packet, shareable under NDA.
Yes. We accept customer paper for the MSA and review on a standard SLA. Our DPA covers GDPR and UK GDPR. The sub-processor list is maintained with notice provisions on changes.
Annual contracts with PO and invoice, NET 30 by default, NET 60 by arrangement. Multi-year terms available. Credit card is not required.
Tiered support response by severity. Status page and incident communication run on a separate provider so customers can verify state independently.
Ready to start the conversation
Procurement teams want the documents. Buying teams want the demo. Choose the one that fits and we will route the rest.