Permissions management startup AuthZed announced new support for retrieval-augmented generation and agentic artificial intelligence systems, expanding its authorization infrastructure to address security challenges in enterprise AI. The expanded support is designed to give engineering teams the tools they need to ensure that AI systems respect permissions, prevent data leaks and maintain complete audit trails. AuthZed uses its open-source permissions system, SpiceDB, to support RAG and agentic AI. SpiceDB, based on Google’s internal permission system, Zanzibar, was built for scale and complexity and can scale to trillions of access control lists and millions of authorization checks per second. AuthZed says that supporting AI is a natural evolution for the system. AuthZed ensures that only authorized data is retrieved, embedded and displayed to users throughout the RAG process. Using AuthZed, teams can enforce access control by filtering documents before embedding them, post-filtering vector search results to exclude restricted content, and synchronizing permissions in real time with platforms such as Google Workspace and SharePoint. The controls allow organizations to build secure, high-performance RAG systems that minimize the risk of data leaks. On the agentic AI front, AuthZed’s Agentic AI Authorization Model is designed to manage what agents can do by aligning their capabilities with the permissions of the users they act on behalf of.