Skip to main content

Security Overview

Layered security controls for procurement and distribution teams that need clear data-protection evidence before a pilot or production rollout.

Data Security

Transport and storage protections are reviewed service by service; no fixed algorithm is claimed for every data path without deployment evidence.

Encryption at Rest

Deployment-verified

At-rest protection follows configured Google Cloud and Firebase service controls; evidence is collected before production sign-off.

Encryption in Transit

Deployment-verified

Transport protection is verified on deployed endpoints; no universal protocol version is claimed here.

Cloud Infrastructure

Customer data is hosted on managed Google Cloud and Firebase services with service-specific region configuration.

Region

Service-specific

Location

Verified per deployment

Provider

Google Cloud Platform / Firebase

Access Controls

Layered access controls are designed to restrict users to authorized data and actions; backend checks and Security Rules are the final enforcement points.

  • Role-Based Access Control (RBAC)

    Predefined roles (Admin, Sales, Distribution, Customer) with configurable module-level permissions

  • Multi-Factor Authentication (MFA)

    Firebase Authentication with support for email/password, phone, and third-party identity providers

  • Session Management

    Automatic session expiry, per-user rate limiting, and Firebase App Check support where enforcement is enabled for the deployment.

Audit Logging

Supported security-sensitive mutations emit audit events for operational review; workflow coverage must be verified before production claims are made.

  • Audit Event History

    Audited workflows record create, update, delete, or status metadata according to their implemented event contract.

  • GoBD-oriented review support

    Supports GoBD-oriented digital record-keeping; company-specific requirements should be reviewed.

  • Field-Level Diffs

    Where supported, audit events capture changed fields, actor context, and timestamps for review.

Data Retention

Configurable data retention policies that support legal review while respecting your data minimization preferences.

Invoice Retention

Configurable statutory period

Retention defaults for tax-relevant documents should be reviewed against German AO §147 and HGB §257 requirements.

Configurable Policies

Per tenant

Tenants can configure retention periods above the legal minimum via admin settings

Backup and Recovery

Production recovery controls are treated as operational evidence, not a marketing promise.

  • Scheduled Firestore Exports

    The production preflight requires scheduled Firestore export configuration with a non-default private backup bucket before production audit can pass.

  • Restore Drill Required

    A backup is not treated as launch-ready until a restore into a non-production environment is rehearsed and recorded.

  • Evidence-Based RPO/RTO

    Customer-specific RPO/RTO commitments are only stated in signed agreements after deployment, first-export, and restore evidence exist.

Security Testing

Security assurance combines source review, automated checks, and explicit disclosure of testing work that is still pending.

  • Code and Rule Review

    Tenant isolation, callable authorization, Firestore rules, Storage rules, and public-copy claim guards are reviewed in repo before release.

  • Dependency and Secret Checks

    Web and Functions dependency baselines, production-config preflights, and secret-hygiene scans are part of the release checklist.

  • External Penetration Test

    No external penetration-test report is claimed yet; it remains a pre-enterprise/customer-request item until scheduled and evidenced.

Incident Response

We maintain a documented incident-response process to detect, contain, assess, and recover from security incidents.

Incident Notification Process

For confirmed personal-data incidents, we assess role and risk, contain the issue, and notify affected customers without undue delay where legally or contractually required; GDPR Articles 33 and 34 timelines are handled with customer-controller obligations.

Compliance Roadmap

A roadmap of security controls and independent review targets. No certification is claimed unless the status is explicitly marked active.

Data Rights Workflows

Data export, deletion request, and consent-management workflows that support GDPR review.

Active

GoBD-oriented Audit Trail

Append-only audit logging designed to support review against German digital record-keeping requirements.

Active

ISO 27001

Readiness planning for an information security management system; no ISO 27001 certification is claimed.

Planned review

BSI C5

Future review target for German cloud controls; no BSI C5 attestation is currently claimed.

Future review

Contact Security Team

Use the secure contact form for security questions or reports; the confirmed provider email is published in the Legal Notice.

Open secure contact form