Security & Compliance
Your data is sensitive. We treat it that way.
Multi-Tenant Isolation
PostgreSQL Row-Level Security (RLS) policies prevent any cross-tenant data access at the database level. Each tenant's data is logically isolated with strict per-tenant encryption keys and access controls. Complete data isolation is guaranteed regardless of plan tier.
Encryption at Rest
API credentials (Stripe, Square, PayPal, QuickBooks) are encrypted with AES-256-GCM. Each tenant receives a unique encryption key for maximum security. Credentials are never stored in plaintext.
Password Security
All passwords are hashed with Argon2id (t=3, m=65536, p=4) — the recommended algorithm for password hashing. No MD5, no SHA-256, no bcrypt.
Zero-Trust Login
Database-backed login lockout prevents brute force attacks. Failed login monitoring with automatic account lockout after repeated failures.
Audit Logging
Every significant action — rate changes, sale modifications, user management — is recorded in the audit log with old and new values. Full accountability trail.
Network Isolation
All connections are encrypted with TLS 1.3. Rate limiting and access controls prevent unauthorized requests. Network traffic is segmented and monitored to ensure tenant data remains isolated and secure.
Ready to stop guessing on payday?
Start tracking commissions today. Setup in under 5 minutes.