EU hosting, encryption, GDPR, audit trail, industrial compliance. Everything your IT Director needs to know, clearly explained.
Strict authentication, bcrypt hashed passwords in database, Microsoft/Okta SSO optional (Enterprise included).
Postgres RLS: each user sees only projects they are an active member of. No cross-tenant access possible.
7 native roles (DO, AMO, CDP, Procurement, Contractor, Sub-contractor, Third-party, HSE). Read/write/validation filtered by role.
Every action recorded (who, what, when, result). Exports for internal compliance and external audits.
Kill-switch L2V (security incident), 1-click revocation by user, per-user disable by admin. 3-level control.
Revocable Bearer token, bcrypt hash, dedicated audit trail. See AI security page โ
An immutable snapshot of open reserves and active retentions at point in time, sealed by SHA-256 hash. Document with evidentiary value, 10-year retention, legally enforceable. The contracting authority freezes a reference state before each critical milestone โ not a dated Excel copy.
ITAR data, classified contracts, defense, personal data: disable generic AI and intelligent DOE at project level, without giving up the platform. EU-exclusive hosting (Supabase eu-west-1), no data transfer outside EU for your client data. Native GDPR compliance.
