Security & Compliance Roadmap
Trust is critical for scientific operations. We are preparing for formal SOC 2 review and are aligning the platform around documented controls, auditability, and least-privilege access.
Current Security Posture
Encryption Everywhere
Platform data is designed to be encrypted at rest and in transit. Object storage and attachment workflows use provider-backed encryption controls and scoped access paths.
Access Control
Role-Based Access Control (RBAC) enforces least-privilege access. Organizations can require MFA for workspace access, and passkey support is treated as a configurable hardening path rather than a universal claim.
Audit Readiness
Critical workflow changes are designed to be captured in audit trails and evidence records. Formal control mappings and external certification work are still in preparation.
Questions about our security controls? Contact our Security Team.
