Security
Security for real-world travel transactions.
Our platform is designed around credential safety, transaction validation and operational visibility.
Credential and access controls
API keys should stay server-side, with scoped access for tools and environments. Production access is granted through an approval process so teams can align security, rate limits and settlement requirements.
Separate sandbox and production credentials.
Least-privilege access for agent tools.
Key rotation and audit-friendly operational logs.
Transaction safety
Every booking workflow should validate traveler identity, dates, cities, inventory, policies, prices and cancellation rules before creating orders or changing money-moving state.
Explicit confirmation before booking.
Webhook-driven order state.
Human handoff for ambiguous or high-risk actions.
Voyagent
Need a formal agreement?
Contact the team for production access, enterprise terms or security review materials.