SECURITY — ENTERPRISE-GRADE BY DESIGN

Security, access, and auditability are built into the architecture.

Ssabi is multi-tenant infrastructure that carries other companies' operations. Isolation is not a feature we added. It is the shape of the system.

The pillars

Row-level isolation

Tenant separation enforced by the database on every query, not in the interface.

SSO and SCIM

Federate identity from providers your clients already run.

Immutable audit log

Time-stamped record of every action, per tenant.

Granular roles

Per-tenant permission matrices, down to the field.

Encryption

Data protected in transit and at rest, per modern standards.

99.98% SLA

Status page, incident history, and uptime in the open.

The details

TENANT ISOLATION
Enforced at the database row on every queryEvery table carries a tenant key, and row-level security policies check it against the authenticated user. A cross-tenant read is not a bug we catch; it is a query the database refuses to run.
TESTING
Isolation is tested as a release gateA dedicated isolation suite runs against the database. Any failure blocks release.
ACCESS CONTROL
Role-based permissions per tenantEach tenant controls its own permission matrix. Access checks run on the server for every action.
IDENTITY
SSO via SAML and OIDC, SCIM provisioningMicrosoft Entra, Okta, and Google Workspace. Just-in-time provisioning with a default role you choose.
DATA OWNERSHIP
Your data is exportable at all timesFull structured export on request or self-serve. Leaving is easy, which is why staying is a choice.
AVAILABILITY
99.98% uptime target with public statusStatus page, incident history, and uptime published in the open.

Put your security team in the room.

Bring your questionnaire to the demo. We would rather answer it early.

Request a demo