Capabilities

    Everything Exomations can do

    A visual orchestration platform for regulated enterprises — every node, the deployment model, the security posture, and how flows actually run. No login required to read it.

    What each node does

    Flows are built from typed nodes. Here is every family and what it gives you.

    Triggers

    Start flows from the outside world.

    • Webhook trigger — start a flow from any inbound HTTP request
    • Schedule trigger — cron-style recurring runs
    • Form trigger — a hosted public form that submits into a flow
    • Manual & event triggers — run on demand or from internal events

    Logic & control flow

    Branch, loop, and orchestrate.

    • Switch / condition — route execution down different paths
    • For-each iteration — process arrays item by item
    • Idempotency guard — block duplicate processing safely
    • Stop / continue — halt a branch or skip an iteration

    Data & transformation

    Shape, query, and move data.

    • Data transform — map, filter, and reshape payloads
    • Database query — read/write Postgres, MySQL, and more
    • Custom code — JS sandbox with set/copy operations
    • Multi-dimension mapper — payroll/GL crosstab & rules mapping

    Integrations & HTTP

    Reach 192+ external systems.

    • HTTP request — call any REST API with auth & retries
    • App action — typed operations against catalog connectors
    • GraphQL & SOAP — structured query and legacy enterprise APIs
    • SAP service layer — query and post to SAP B1 / S/4HANA

    AI acceleration

    Intelligence inside the flow.

    • AI agent — tool-using agent with shared operational memory
    • Smart flow builder — generate flows from natural language
    • AI repair & self-healing — diagnose and fix failing steps
    • Provider-agnostic — OpenAI and bring-your-own endpoints

    Communication

    Reach people across channels.

    • WhatsApp — Twilio, Taqnyat, Azeer with auto-fallback
    • SMS — multiple providers with delivery fallback
    • Email — transactional and notification sends
    • Notifications — in-app notification center

    Files & documents

    Generate and process documents.

    • Excel / Word / Google Sheets — export and read
    • PDF generation — native + PDFKit fallback
    • File operations — read, write, and transform files
    • ZATCA e-invoicing — compliant e-invoice generation

    Human-in-the-loop

    Approvals and oversight.

    • Approval node — pause for a human approve/reject decision
    • Audit logging — every sensitive action is recorded
    • Role-based access — scope who can run and edit
    • Versioning — roll flows forward and back

    Deployment model

    How Exomations runs — and where your data lives.

    Multi-tenant SaaS

    Fully managed cloud with per-tenant isolation, RBAC, and usage metering. The fastest way to start — no infrastructure to run.

    Regional / regulated path

    Data-residency-aware hosting with a documented KSA migration path for regulated workloads (see the Trust page for the residency inventory).

    Workers & queue

    Background execution on BullMQ with retries, idempotency, and observability — long-running orchestrations run reliably, not in the request path.

    How flows run

    The reliability machinery underneath every orchestration.

    Visual flow builder

    Design orchestrations on a React Flow canvas — nodes, branches, loops, and human approvals.

    Retries & self-healing

    Deterministic rule-based repair runs before AI repair; failing steps are diagnosed and fixed automatically.

    Idempotency guards

    Duplicate-safe execution so re-runs and webhook retries never double-process.

    Versioning & audit logs

    Every flow change and sensitive action is versioned and recorded for compliance.

    Observability

    Per-step execution history, silent-failure detection, and proactive alerting.

    Secure credentials

    Encrypted per-tenant connection credentials; secrets are never returned to lower-privilege users.

    Security & compliance

    Enterprise controls by default. Full detail on the Trust page.

    AES-256 encrypted credentials at rest
    JWT access/refresh auth with optional smart 2FA
    Per-tenant data isolation enforced server-side
    SSRF guards on all outbound and connector traffic
    NCA ECC & PDPL-aligned compliance posture
    Tamper-evident audit logging on sensitive actions

    Put it to work

    Start with a template or describe what you want in plain language — the AI builder turns it into a runnable flow.