Security and data integrity by design.
ScoutzOS is built on modern infrastructure with multi-tenant isolation, row-level security, and audit-ready accounting from day one.
Infrastructure
Supabase Postgres
Enterprise-grade PostgreSQL with automatic backups and point-in-time recovery.
TLS 1.3 Encryption
All data encrypted in transit using the latest TLS standards.
AES-256 at Rest
Database and file storage encrypted at rest with AES-256.
Edge Deployment
Deployed on Vercel edge network for low-latency, high-availability.
Data Isolation
Row-Level Security
RLS policies enforced at the database level on all 45+ tables.
Multi-Tenant Architecture
Complete data isolation between organizations by design, not configuration.
Tenant Scoping
Every record belongs to a tenant_id with enforced foreign key constraints.
Query Filtering
All queries automatically scoped to the authenticated user's tenant.
Accounting Integrity
Double-Entry Enforcement
Database constraint ensures SUM(debits) = SUM(credits) on every journal entry.
Immutable Transactions
Posted entries cannot be modified—only voided with reversing entries.
Trust Account Separation
Security deposits held in separate trust accounts (1010 vs 1000).
Full Audit Trail
Every financial action logged with user, timestamp, and change details.
Access Control
Role-Based Permissions
Admin, Manager, Staff, Tenant, and Vendor roles with scoped access.
Session Management
Secure session handling with automatic expiration and refresh.
SSO Support
Enterprise plans include SAML/SSO authentication integration.
API Key Management
Scoped API keys with granular permissions and rotation support.
Compliance roadmap
ScoutzOS is on the path to industry-standard certifications.
SOC 2 Type II
In ProgressSecurity controls audited and certified.
GDPR Ready
PlannedData privacy controls for EU expansion.
State Trust Compliance
ActiveTrust account handling per jurisdiction requirements.
Found something? Report it.
We take security seriously. If you've identified a vulnerability, please report it responsibly.
Questions about security?
Our team is happy to discuss security requirements and compliance needs.