Security & Trust

Isolated by default. Auditable by design.

Multi-tenancy done right: every workspace is sealed off at the database level with Postgres row-level security, so one tenant can never reach another's data. Identity, roles, and a full audit trail come standard.

Controls

What your security team will ask for

The controls that turn a pilot into a rollout — present from the first workspace, not gated behind a future enterprise upgrade.

SSO & SCIM

SAML / OIDC single sign-on and SCIM provisioning, so identity stays with your IdP.

Roles & RBAC

Granular role-based access control, plus operator and tenant-admin consoles.

Audit log

Every meaningful change is recorded — who did what, when, and to which record.

GDPR ready

Export and deletion workflows make data-subject requests a button, not a project.

Data residency

Controls to keep workspace data in the region your customers and regulators expect.

Encryption

Data encrypted in transit and at rest, with scoped, rotatable keys for programmatic access.

The short version

One engine, many tenants, zero crossover. Your data is yours, separated at the row level, governed by your identity provider, and logged end to end.

Bring it to your security review

Spin up a workspace and put the controls in front of your team.

Security & Trust — GeneCRM