Identity & access
2FA, role-based permissions, and tenant-scoped authorization protect account boundaries.
Security & compliance
Security posture
Security is designed into tenancy, access control, logging, and GDPR workflows from day one.
Policy version: 04/04/2026
Auditability
Business and access logs with export tracking help incident analysis and accountability.
Privacy controls
GDPR data export, erasure workflows, and retention automation are part of the application.
Operational resilience
Rate limiting, signed links, and controlled download windows reduce abuse on public surfaces.
Implemented controls
- Two-factor authentication (TOTP) for user accounts.
- Tenant isolation with scoped permissions and platform/tenant boundaries.
- Audit and access logs with PII-aware handling.
- Consent logging and cookie preference tracking.
- Signed download links for sensitive export artifacts.
- Automated retention cleanup for logs and expired packages.
GDPR and ePrivacy
We apply data minimization, purpose limitation, and configurable retention periods aligned with GDPR requirements.
Incident readiness
Operational logs and security workflows support investigation and customer communication during incidents.
Security contact
For security questionnaires or due-diligence requests, contact us at support@manage.camp.
support@manage.camp