1 Native integrations available today
| Integration | Use case | Direction |
|---|---|---|
| Slack | Real-time DLP alerts, daily productivity digest, agent offline notifications | Headx → Slack |
| Microsoft Teams | Same as Slack — alerts and digests routed to a Teams channel | Headx → Teams |
| Email / SMTP | Alert emails, scheduled reports, weekly summaries | Headx → Email |
| REST API | Programmatic access to all data — agents, employees, screenshots, activity, DLP alerts | Bidirectional |
| Webhooks | Event-driven push for any signal — DLP fires, employee login, agent offline, USB event | Headx → Any system |
| Cashfree | Subscription billing for Indian customers (default) | Headx → Cashfree |
| Razorpay | Alternative billing gateway | Headx → Razorpay |
| Group Policy | Mass-deploy the Windows agent across the fleet via MSI | Endpoint mgmt → Headx |
| Active Directory (LDAP) | Sync employee directory and user attributes (On-Premise edition) | AD → Headx |
2 SIEM and SOC integration
Headx exports security signals to popular SIEM platforms via webhooks and a structured event log:
- Splunk — HTTP Event Collector (HEC) endpoint configured per tenant
- Microsoft Sentinel — REST API ingestion via Log Analytics
- Elastic Stack / Elastic SIEM — Beats agent reads the Headx events log
- IBM QRadar — Syslog forward from Headx server (On-Premise)
- Generic syslog — Any SIEM that accepts RFC 5424 syslog
3 HRMS / payroll integration
Auto-generated timesheets can be exported as CSV for ingestion by:
- Zoho People
- Keka
- greytHR
- SumHR
- Darwinbox
- Any HRMS that accepts CSV timesheet import (almost all do)
Direct API integration with Zoho People and Keka is on the roadmap for Q3 2026.
4 REST API basics
Every Headx instance has a documented REST API mounted at /api/v1/. Authentication uses bearer tokens issued from the admin panel (Settings → API Keys). Rate-limited to 60 requests/minute per token by default; higher limits available on request.
Key endpoints
| Method | Endpoint | Returns |
|---|---|---|
| GET | /api/v1/employees | Employees with pagination & filters |
| GET | /api/v1/agents | Agents and status |
| GET | /api/v1/activity | Activity log slice (filter by employee + date) |
| GET | /api/v1/screenshots | Screenshot metadata (URLs signed and short-lived) |
| GET | /api/v1/dlp/alerts | DLP alert feed |
| POST | /api/v1/policies | Create or update monitoring policy |
| GET | /api/v1/reports/productivity | Productivity summary |
Full OpenAPI 3.1 spec available in your admin panel under Settings → API Documentation.
5 Webhooks
Configure outbound webhooks in Settings → Webhooks. Payload is JSON, signed with HMAC-SHA256 using a per-webhook secret to prevent forgery.
Available events
agent.online,agent.offline,agent.installed,agent.uninstalledemployee.created,employee.updated,employee.deactivatedscreenshot.captured(high-volume — filter carefully)dlp.alert,dlp.alert.resolvedueba.risk.high,ueba.risk.criticalsession.started,session.endedusb.connected,usb.write.blockedpolicy.updated,policy.applied
6 Custom integration
Need to integrate with a tool not listed? Two paths:
- Webhook + your code — receive Headx events at a webhook endpoint you control, then call whichever third-party API you need. Most common pattern.
- Custom integration service — Headx engineering team builds a native integration for you (paid engagement, typical SOW: 2-4 weeks).
Both paths are documented on the contact page — email sales@headx.in to discuss.
7 Roadmap
| Target | Integration | Status |
|---|---|---|
| Q3 2026 | Native Zoho People, Keka, greytHR integrations | Planned |
| Q3 2026 | Okta SSO and Azure AD SSO | Planned |
| Q4 2026 | Jira and ServiceNow ticketing integration for DLP-alert workflow | Planned |
| Q4 2026 | Power BI and Looker Studio connectors | Planned |
| Q1 2027 | Salesforce / HubSpot CRM activity sync | Scoped |
Need detailed audit evidence or a signed DPA?
The full Statement of Applicability, latest penetration-test summary, sub-processor register with annual review records, and pre-filled CAIQ / SIG questionnaires are available under NDA — typically within 24 hours (IST business days).