Last month, we made KiloClaw generally available. Since then, over 25,000 people have started using it for real workflows.

At the same time, we introduced PinchBench — the first OpenClaw benchmark focused on real-world agent workflows. In just a few weeks, over 250,000 people have interacted with it, and it was referenced on stage by Jensen Huang during his keynote at NVIDIA GTC.

We’re seeing real momentum around OpenClaw. It’s moved beyond a concept to something developers use every day. That momentum is creating a new challenge for organizations — and a new opportunity to bring always-on AI agents to everyone, not just developers who know how to set them up.

Today, we’re announcing KiloClaw for Organizations.

KiloClaw for Organizations

Last week, I was talking to the head of AI at a large government contractor. His developers had been running personal OpenClaw agents on random VPS instances — managing calendar invites, drafting emails, monitoring repositories. This caused the organization to completely ban the use of OpenClaw before they could have a clear strategy on deployment.

“We can’t see any of it,” he said. “No audit logs. No credential management. No idea what data is touching what API.”

The BYOAI (Bring Your Own AI) problem — the same one that hit coding assistants two years ago — is now happening with personal AI agents.

The question isn’t whether agents are being used inside your organization. It’s whether you have any visibility or control over what they’re doing. That’s why we’re announcing KiloClaw for Organizations. Your developers are already using OpenClaw. Probably without your security team’s knowledge or approval.

What You Get

Everything individual KiloClaw users get, plus:

• SSO/OIDC integration with your existing identity provider

• SCIM provisioning for automated user lifecycle (when someone leaves, their access goes with them)

• Centralized billing with full visibility into usage across your organization

• Usage analytics showing which models your team uses and what tasks agents handle

• Admin controls for org-wide policies on models, permissions, and session duration

Instead of agents running on developer-managed infrastructure with personal credentials, KiloClaw for Organizations runs agents in managed environments with scoped access and org-level controls.

This is the same foundation as Kilo Code for Enterprise, extended to agent infrastructure.

Pricing

You pay for only what you need — as many or as few of your team members can start KiloClaws as you need. You only pay for the compute and inference you use. And you can pay for inference rates directly with BYOK or through Kilo Gateway credits, same as always.

If you’re already a Kilo customer, this shows up in your existing dashboard. Same account, same billing relationship.

Making always-on agents useful for all

Hosted, managed OpenClaw has been a good start, but it’s not enough on its own. It still requires users to be at the cutting edge of technology just to get set up, and it leaves out the vast majority of people who have never heard of OpenClaw.

We’ve been asking ourselves three questions:

1. How do we educate people on what they can actually do with a KiloClaw bot?

2. How do we go beyond just tech — giving people who’ve never heard of OpenClaw an always-on AI assistant?

3. How do we make personal AI agents permissible to bring to work?

KiloClaw is our answer to all three.

Built for the Enterprise from Day One

We’ve been rolling out KiloClaw for Organizations internally at Kilo, and it has forced us to think carefully about our own data practices. A few things we’ve implemented along the way:

• 1Password integration and secrets config: So agents never receive credentials in plain text and can’t accidentally leak them.

• Scoped email accounts: We recommend giving your bot a company-domain email with read-only privileges. The bot has full visibility, but it cannot send or accidentally share sensitive information with others.

• Read-only system access: At Kilo, every team member’s bot gets a GitHub account with contributor access and read-only access to logs. We’re not just dogfooding the tool, but we’re dogfooding the organizational processes.

The pattern we’re landing on: every person in the organization will eventually have two identities — their human account and a bot account. The bot operates with limited, explicitly scoped permissions. KiloClaw for Organizations are the infrastructure to make that model work at scale.

Getting Started

If you’re evaluating KiloClaw for your organization:

1. Read the security white paper — it covers the full architecture in technical detail.

2. Try the free tier. Every new user gets 7 days of free compute.

3. Talk to us. For organizations, we can walk through your specific security requirements.

Head to kilo.ai/kiloclaw/orgs or reach out to schedule a technical deep-dive.

Blocking agents won’t work. Your developers are already using them. KiloClaw for Organizations gives your security team a way to say yes — with the visibility and control they actually need. And KiloClaw “yes” can extend to everyone in your organization, not just the engineers who know how to configure an OpenClaw instance.