Skip to content
opzo.ai
Book a demo
Australian sovereign · data stays in AU

One platform. Six applications. Zero compromise.

The opzo.ai Portal is the central nervous system of the suite — identity, organisations, billing, credits, documents, audit, and the AI services (RAG, PII redaction, HITL approvals, notification triage) that every child app inherits by default.

Book a demoTrust & security

Portal pillars

What the Portal gives every app, for free.

Child apps don’t reinvent identity, billing, documents or audit. The platform handles it — securely, consistently, with a single bill.

Identity & access

Auth0 OIDC SSO across every app. Organisations, member roles (Owner / Admin / Member), per-app roles (Admin / Editor / Viewer / User), MFA, session management.

Billing & credits

Stripe-backed subscriptions, transparent credit ledger, per-action AI pricing, low-balance alerts, and consolidated organisation invoicing.

Documents & data

Azure Blob–backed document service shared across apps. Folder hierarchy, versioning, permission inheritance.

Audit & compliance

Every significant action logged with user, org, app, entity, IP and user agent. Immutable, queryable, exportable.

Portal capabilities

The boring-but-essential things, handled.

Capabilities every regulated buyer expects to see during a security review — built once at the platform, inherited everywhere.

User & organisation management

Invites, roles, transfer ownership, app authorisation.

Personal & org settings

Profiles, preferences, notification preferences, MFA.

App authorisation

Granular per-app access control and entitlement enforcement.

Notification triage

Critical / Important / Normal / Informational tiers; channels respect user preferences.

PII detection & redaction

Australian PII (TFN, Medicare, ABN, licence, cards) handled at the AI boundary.

Audit log

Org-scoped audit feed; export for compliance reviews.

AI platform extensions

The AI services every app inherits.

opzo.ai extends the Portal with the AI primitives that make sovereign, defensible AI possible across the suite.

opzo.ai RAG

A managed retrieval-augmented generation layer with verifiable citations, per-organisation knowledge bases, and a regulatory corpus webhook for keeping legal sources fresh.

  • Verifiable citation fetcher and verifier
  • Per-organisation knowledge base provisioning
  • Pluggable lookup strategies per domain (NDIS, awards, Aged Care, AML/CTF, etc.)

HITL approval service

Approval chains for high-stakes AI outputs: single, dual (four-eyes), delegated and confidence-thresholded automatic approval — with cryptographic decision signatures.

  • Priority levels (Critical / Urgent / High / Normal / Low) with SLAs
  • Inline editing before re-submission
  • Reasoning trace required before approve

Notification triage

An intelligent router that respects urgency tier and user preferences, deciding immediate vs business-hours vs weekly digest delivery.

  • Channel mix per urgency (in-app / email / SMS / push)
  • Quiet-hours and digest management
  • Single API across the suite

PII detection & redaction

A central, Australia-first PII detector and redactor invoked before content reaches AI services — never logged unredacted.

  • TFN, Medicare, ABN/ACN, driver’s licence, credit card, email/phone
  • Sensitivity tiers (Critical / High / Medium / Low)
  • Partial masking helpers for safe UI display

Architecture

A clean separation of concerns.

Apps focus on their domain; the platform handles cross-cutting concerns. Australian Azure infrastructure underpins everything.

Vertical applications

Domain-specific UX, business logic and entity models.

6 components
CareFinIQCareSentinelClauseIQGrantScoutWageGuardWhiteTape

opzo.ai Portal & AI platform

Shared, opinionated services every child app inherits.

10 components
SSO & identityOrg & user mgmtBilling & creditsDocument storeAudit logNotification triageHITL approvalsPII redactionopzo.ai RAGPublic API

Australian Azure infrastructure

Compute, storage, vector search and AI inference, exclusively in AU regions.

6 components
Auth0Azure SQL (AU)Azure Blob (AU)Azure AI Search (AU)Azure OpenAI (AU)Stripe

For developers & partners

An API-first platform.

Every opzo.ai capability is reachable via a public API. Build on it, integrate it, embed it. Partners can certify connectors; independent software vendors can extend the suite.

  • OpenAPI specs and versioned endpoints
  • OAuth2 / OIDC client credentials and per-org keys
  • Idempotent operations and webhook callbacks
  • Sandboxed environments for testing
  • Signed audit events for downstream systems
Validate a claimPOST
POST /api/v1/carefiniq/claims/validate
Authorization: Bearer <token>
X-Organization-Id: 9f7b...

{
  "service_date": "2026-04-22",
  "support_item": "04_011_0125_6_1",
  "participant_id": "p-1842",
  "hours": 1.5
}

→ 200 OK
{
  "verdict": "PASS",
  "rate_aud": 196.59,
  "ttp_applied": true,
  "rule_citations": [{
    "rule": "ndis.pricing.2026.§4.3",
    "url": "https://opzo.ai/rag/ndis/2026/4-3",
    "chunk_id": "kb-37a"
  }],
  "risk": 0.07
}

Building something on opzo.ai?

Whether you’re a buyer evaluating the suite or a partner exploring the platform, we’ll set up a sandbox and walk you through it.

Talk to platformSee the apps