Tenant isolation
Every workspace is tenant-scoped, including API queries, document access, and module entitlements.
RBAC and auditability
Owner, admin, manager, and agent roles enforce principle-of-least-privilege with audit logs for writes.
Document link controls
Public quote and invoice views use tokenized links with expiry and revocation support.
Baseline controls included
- HTTPS transport security
- Credential-based authentication with secure sessions
- Rate limiting on sensitive auth endpoints
- Platform and tenant audit streams