Security & Compliance
Your Data, Locked Down
Enterprise-grade security built into every layer. From database isolation to encrypted backups, your business data is protected by design.
Data Isolation
- Row-level security isolates every tenant at the database level
- Each business sees only their own data - enforced by PostgreSQL policies, not application code
- Admin accounts cannot access other tenants' data
Access Control
- Five-tier role-based access control (RBAC) with 20 permission modules
- Granular permissions: read, create, update, delete per module
- Tenant admin role for user and settings management
- Dedicated staff experience mode for field workers
Audit & Compliance
- Full audit trail on every create, update, and delete operation
- Compliance documentation suite: policies, procedures, risk registers, assessments
- Certifications tracking with expiry monitoring
- HSE documentation management
GDPR & Data Rights
- Data subject access requests (DSAR) with full data export
- Data anonymisation for right-to-erasure requests
- DSR request tracking and management for super admins
- Cookie consent management with granular preferences
Infrastructure
- AWS cloud-native: Lambda, Aurora PostgreSQL Serverless, CloudFront CDN
- Web Application Firewall (WAF) with rate limiting on auth endpoints
- Distributed tracing (X-Ray) and error tracking (Sentry)
- Automated encrypted backups with point-in-time recovery
- All data encrypted at rest (AES-256) and in transit (TLS 1.2+)
Monitoring
- Public status page with real-time health checks
- Automated alerting on audit failures and error spikes
- CloudWatch metrics and alarms across all services
- 99.9% uptime SLA target
Certifications
Cyber EssentialsQ2 2026
Cyber Essentials PlusQ3 2026
ISO 27001Q4 2026
SOC 2 Type IIQ1 2027
Questions about security?
We are happy to walk you through our security practices.