Your financial data, inside your boundary.
Isolation by design, identity done the modern way, and the option to keep everything on your own infrastructure.
How we protect your data
Tenant isolation by design.
Your organization identity is set server-side at the gateway and forced into every database query. Clients never assert their own org, so one tenant cannot read another's data.
Identity, the modern way.
OIDC + PKCE sign-in via Zitadel, server-side sessions, signed tokens, and hardened cookies.
Layered access control.
Gateway-enforced identity plus relationship-based permissions (the Google-Zanzibar model) separating platform, tenant, and organization roles before any privileged action.
Secrets, handled with discipline.
Vault is the single source of truth; secrets reach services only through Kubernetes secret references. No credentials in source control.
Protected in transit.
TLS secures every request at the gateway.
You choose where your data lives.
Run it managed, or fully on-prem where every data component stays inside your network. Your financial data never leaves your infrastructure.
Compliance — where we are, stated plainly
Are you certified — SOC 2, PCI-DSS, ISO 27001, HIPAA?
Not yet. We're early, and these are on the roadmap. Ask us where we are and we'll tell you straight.
Your data, your boundary. Let's scope it.
Run it managed, or fully on-prem where financial data never leaves your network.