Willow is building the identity and access layer for enterprise AI agents. As organizations roll out agents across the workplace, with 79% of companies now deploying them and 73% running multi-agent systems, the gateway between those agents and the internal systems they need to act on has become one of the most overlooked blind spots in enterprise security. Most organizations are stuck in an impossible trade-off: either lock AI down because it cannot yet be trusted with sensitive systems, or let agents operate with unrestrained access and hope nothing goes wrong. Sixty-five percent of companies have reported agent-related incidents in the last twelve months, which suggests the second strategy is failing.

‍

Willow offers a third path. The platform connects any AI agent, including Claude, Cursor, ChatGPT, Codex, Gemini, n8n, and custom-built agents, to any internal system, and gives enterprises full visibility into which agents employees are already using, granular controls over what each agent is allowed to access and execute, and a complete audit trail of every action taken. Tools are generated at runtime, scoped to the task at hand, so agents get exactly what they need and nothing more. Shadow AI inside the organization is detected and brought under governance. The platform runs as SaaS, dedicated cloud, or self-hosted including air-gapped, and ships with a marketplace of over 1,000 ready-to-use connectors, 100 skills, and 100 plugins.

‍

The company was founded by Eyal Ben Ezra (CEO), Shalev Shalit (CTO), and Idan Chetrit (VP Platform), former Wix engineers who built and ran the platform internally at Wix scale before spinning it out. That origin matters: Willow has been deployed across more than 5,000 employees at Wix, which means the team is not theorizing about what enterprise agentic access governance needs to do under load. They built it, ran it, and then turned it into a product.