Absolute isolation, by design.
Security is not a feature we bolt on. It is the architecture. Here is how we protect your tenant, your data and your users.
Least privilege Graph access
We request only the Microsoft Graph permissions a feature needs, and document every one.
Secrets in Azure Key Vault
No credentials in code or config. Encryption keys and tokens live in Key Vault and rotate independently.
Tenant data isolation
Per tenant boundaries are enforced at the data and key layers, not just in application logic.
Secretless deployment
Our delivery pipelines use workload identity federation, so there are no long lived deployment secrets to leak.
Full audit trail
Administrative and release actions are logged and exportable for compliance.
UK and EU data residency
Hosted in UK and EU Azure regions, close to where our customers operate.
Found something? Tell us.
We welcome reports from security researchers. Reach us through our contact form (mention "security" in your message) and we will respond promptly. Please give us reasonable time to remediate before any public disclosure.
Want the detail?
We are happy to walk your security team through our architecture, permissions and data handling.
