Skip to content

    Security & Compliance

    Your data. Your infrastructure. Your control.

    Enterprise-grade security with TLS encryption, RBAC, audit logging, and on-prem deployment options. Your data stays within your infrastructure.

    Encryption

    TLS/HTTPS on all connections. LUKS disk encryption. AES-256 encrypted backups. No unencrypted data in transit or at rest.

    Access Control

    4-role RBAC (Admin, Manager, Supervisor, User). Session tokens with configurable expiry. No role self-escalation.

    Audit Logging

    Every action logged with timestamp, user ID, and IP. Append-only logs. 90-day default retention. Compliance incident logs kept 3 years.

    Data Isolation

    Per-client database isolation. Separate Docker volumes. Client-specific API keys. No cross-client data access.

    Bilingual Governance

    Equal Arabic/English processing. UTF-8 encoding. RTL/LTR preservation. Language-specific confidence scoring.

    On-Prem Security

    OCR runs on client hardware. Zero external transmission. Support access requires explicit per-session authorization.

    Compliance Readiness

    GDPR

    Data residency options, right to deletion, DPA on request

    UAE PDPL

    Local data handling for UAE clients

    Saudi PDPL

    Local data handling for KSA clients

    Need a security review?

    Contact our team to discuss security requirements, data handling, and deployment options for your organization.