Delegate

Security

Built around least privilege and explicit approval.

Delegate treats connected tools as high-impact surfaces. The product is designed to prepare work safely, then ask before external impact.

Last updated: June 2, 2026

Scoped OAuth

Integrations use provider authorization flows, scoped permissions, and encrypted token storage. Connected accounts can be disconnected by the user.

Approval before action

Email sends, calendar creation, public posts, document sharing, record modification, deletion, and spending are treated as sensitive actions.

Operational guardrails

Rate limits, prompt screening, failed-run visibility, and operational event logs help detect abuse or unsafe workflow requests.

Monitoring readiness

The app exposes a configuration hook for external error monitoring and keeps local operational records for blocked prompts and failed executions.