What is Tim and how does it work with Microsoft 365?

Tim is an AI Chief of Staff that integrates natively with Microsoft 365 and Slack. It connects to Outlook, Teams, SharePoint, OneDrive, Word, Excel, PowerPoint, Planner, and To Do via the Microsoft Graph API. Tim can read and triage emails, manage your calendar, search files, handle Teams messages, create tasks, and automate multi-step workflows — all while asking for confirmation before taking sensitive actions.

How is Tim different from Microsoft Copilot?

Microsoft Copilot suggests actions and generates content. Tim actually executes tasks autonomously — it sends emails, creates calendar events, moves files, and manages tasks on your behalf. Tim uses a human-in-the-loop confirmation system for sensitive actions, so you stay in control. Tim also works across all M365 apps simultaneously, not just within one app at a time.

Is Tim secure and does it comply with enterprise standards?

Tim uses OAuth 2.0 authentication with Microsoft Azure AD, never stores email content or message bodies, and operates within your existing Microsoft 365 security boundaries. Workspace admins have full governance controls including tool-level permissions, audit logs, and the ability to restrict which actions Tim can take. Admin dashboards show aggregate usage without exposing individual message content.

Tim offers a free Starter tier with $100 in credits, a Pro plan at $39/month for individual professionals, a Team plan at $29/user/month for teams of 6-100 users (with a 20% discount on annual billing), and custom Enterprise pricing with dedicated support and SLAs.

What tasks can Tim automate in Microsoft 365 and Slack?

Tim can automate email triage and replies, calendar scheduling and meeting prep, file search and document summarisation, task creation and management, Teams message monitoring and responses, multi-step workflows combining actions across apps, and scheduled recurring tasks. Tim supports 37 tools across 38 Microsoft Graph API operations.

arrow_back Back to Intelligence Hub

SecurityFebruary 5, 2026

Enterprise Security in the Age of AI Agents

How we built Tim with enterprise security, tenant isolation, and zero-trust principles.

When an AI agent has access to your emails, calendars, documents, and team communications, the security bar cannot be "good enough." It has to be exceptional. In this post, we outline the security architecture behind Tim and the principles that guided every design decision.

The foundation of Tim's security model is strict tenant isolation. Every customer's data is processed and stored in a dedicated, logically isolated environment within Azure. Tim's runtime containers are spun up per-tenant, and there is zero shared state between customers. Even our internal engineers cannot access customer data without an explicit, time-limited authorization that is logged and auditable. This architecture exceeds the requirements of most enterprise security reviews, and it's non-negotiable -- we will not optimize for cost at the expense of isolation.

Tim operates on the principle of least privilege. When you connect Tim to your Microsoft 365 and Slack workspaces, it requests only the specific Graph API permissions required for the features you enable. If you only want Tim to manage your calendar, it never gains access to your files or email. Permissions are granular, revocable at any time, and transparently displayed in the admin dashboard. We also support Conditional Access policies, so organizations can enforce additional restrictions like requiring compliant devices or specific network locations.

All data in transit is encrypted with TLS 1.3, and all data at rest uses AES-256 encryption with customer-managed keys available on our Enterprise plan. Tim's working memory -- the contextual data it uses to understand your workflows -- is encrypted at rest and automatically purged according to retention policies you configure. We never use customer data for model training, and we never will. This commitment is baked into our data processing agreements and verified by third-party auditors.

Our audit logging system captures every action Tim takes: every API call, every document access, every message sent. These logs are immutable, timestamped, and available to workspace admins in real-time through the Tim dashboard. For organizations with existing SIEM infrastructure, we support streaming audit logs directly to Microsoft Sentinel, Splunk, or any webhook endpoint. When questions arise about what Tim did and why, the answers are always available.

We are currently pursuing SOC 2 Type I certification, with our audit period underway. Our security practices have also been reviewed by independent penetration testing firms who conducted both black-box and white-box assessments of Tim's infrastructure. We publish a summary of findings and remediation timelines in our security portal, because we believe transparency is itself a security feature. Enterprise trust isn't earned with a badge -- it's earned with consistent, verifiable rigor.

person

Office of the CEO

Tim Core Engineering