What we protect
The fundamentals, done right
Inventory data is operational data. Losing it, leaking it, or letting the wrong client see it is a business-ending event. Here's how we prevent that.
Encrypted in transit and at rest
All traffic uses TLS 1.2+. Database, file storage and backups are encrypted with AES-256 at rest.
Tenant isolation by design
Every query is gated by Row-Level Security. Operators, staff and clients can only see data scoped to their organisation and customer.
Role-based access control
Granular roles for super admin, staff, and client portal users. Roles are stored separately from profiles to prevent privilege escalation.
Modern auth
Email + password, Google sign-in, forced password rotation, and a separate change-password flow on first login.
Daily backups & point-in-time recovery
Managed Postgres with automated backups and the ability to restore to any point within the retention window.
Full audit trail
Every booking, pick, pack, ship and edit is timestamped against the user that performed it. Nothing happens off the record.
Reliable infrastructure
Hosted on globally distributed infrastructure with edge functions and managed Postgres for resilience and low latency.
Data residency & export
Your data is yours. Export inventory, shipments and reports to CSV at any time, and request a full data export on request.
Compliance
Privacy and data handling
We process personal data in line with UK GDPR / EU GDPR. We're happy to sign DPAs and provide sub-processor lists on request.
- • Data Processing Agreement available on request
- • EU/UK data residency for managed deployments
- • Sub-processor list shared under NDA
- • Customer-controlled data deletion and export
Found a vulnerability?
We appreciate responsible disclosure. Please contact security@stocksphere.app with details. We aim to acknowledge within one business day.