Security
Security and tenant isolation are foundational to Asozal. This page describes how we handle your data, control access, and operate the platform. We describe our practices plainly and route security questions to a dedicated contact.
Data handling and encryption
Customer data is encrypted in transit using TLS and encrypted at rest by our managed database and storage providers. We collect and retain only the data needed to operate the service.
Access controls
Access to production systems is restricted to authorised personnel on a least-privilege basis and is protected by strong authentication. Administrative actions are logged.
Tenant and workspace isolation
Asozal is multi-tenant by design. Every query is scoped to a workspace, so one customer's vendor and cost data is never returned to another. Workspace boundaries are enforced in the application layer on every request.
Vendor integrations
Where Asozal connects to vendor or pricing services, credentials are stored securely and used only to retrieve the data you have asked us to monitor. Integrations are scoped to the minimum access required.
Audit posture
We maintain logging and monitoring across the platform and review our security practices on an ongoing basis. We are happy to discuss our current posture and roadmap with prospective customers under NDA.
Subprocessors
We use a small set of subprocessors for hosting, database, and email delivery. Each is contractually bound to protect customer data. A current list is available on request.