Security at RevMetrix AI

Encryption

All traffic is served over TLS 1.2+. Data at rest in our database is encrypted using the database provider's standard AES-256 encryption.

Access control

Database access is restricted to a service-role key used only by our backend code; the customer's browser cannot reach the database directly. Row-level security is enabled with no public policies. Customer API keys for connected providers are stored per-workspace and are never logged or returned to the client after the first save.

Tenant isolation

Every database row carries a tenant ID. Server-side queries filter on the active tenant on every read and write. We have automated tests that assert isolation across tenants.

SSO & SAML

SSO is available on the Platform tier with SAML 2.0 (Okta, Azure AD, Google Workspace). Contact sales to enable.

Audit logging

Platform tier customers get an exportable audit log of every server action — who did what, when, and to which workspace.

Penetration testing & compliance

We undergo annual third-party penetration testing. SOC 2 Type II is on our roadmap. DPA available on request — see DPA.

Reporting vulnerabilities

Found a vulnerability? Email security@revmetrix.ai — we respond within 24 hours and acknowledge responsible disclosures on our changelog.