Security
Security at Orzeko
We build for operators who need clear boundaries between tenants, accountable access, and traceable changes. This page describes our approach — not third-party certifications we have not completed.
Tenant isolation
Every request is scoped to an organization. Data access paths enforce tenant context before reads or writes — vertical apps do not share customer data across org boundaries.
Authentication model
Users authenticate through the Orzeko account hub (app.orzeko.com). Sessions are validated server-side on each protected route. Role assignments live at the organization level and flow into permission checks in vertical apps.
Authorization (RBAC)
Permissions are evaluated on the server, not only in the client. Role definitions map to concrete capabilities per product module so dealerships and future verticals get consistent enforcement.
Audit logging
Security-relevant events and meaningful state changes are recorded with actor, target, and timestamp. Operators can review activity for troubleshooting and access review.
Data storage
Application state is stored in PostgreSQL. Schema changes are managed through migrations. Backups and retention policies follow our operational runbooks.
Encryption in transit
Traffic between clients and Orzeko services is served over HTTPS (TLS). Internal service communication uses encrypted channels within our deployment environment.
Questions about security practices? Contact us. We do not list SOC 2, HIPAA, ISO, or similar certifications here until they are formally completed and verified.