Identity
Organisation authentication settings and OIDC provider integration.
Security
TOW exposes concrete choices for cloud, self-hosted, or fully air-gapped operation, authentication, permissions, AI providers, review, and export.
Control surface
Organisation authentication settings and OIDC provider integration.
Organisation roles, project visibility, restricted docs, and portal scopes.
Provider configuration, BYOK options, full disable controls, and human review.
Self-hosted storage choice, uploads, export paths, and administrator-managed backups.
Security headers, safe external requests, secret handling, and scoped services.
Operate the Docker Compose deployment and its dependencies without external network access.
Control point
TOW was built in Germany by security professionals with 20+ years of critical-security experience.
FAQ
Current product, deployment, and commercial boundaries.
Yes. A Docker Compose deployment can run fully air-gapped when TOW and every configured dependency remain inside the isolated environment.
No certification claim is made.
Yes. Administrators can configure provider settings, use BYOK options, connect a locally reachable provider, or disable AI.
No. The operating organisation remains responsible for infrastructure, proxy/TLS, secrets, identity, backups, monitoring, updates, contracts, and incident response.
See TOW in your environment