Security & privacy
Security and privacy built into the foundation.
StacksMesh OS is built for agencies handling client data, files, contracts, and payments. These are the controls we ship today.
Core security areas
- Workspace isolationEvery company has its own workspace. Data does not cross tenants.
- Role-based access controlOwner, admin, and member roles with per-module scopes.
- Client portal permissionsClient users only see the data explicitly shared with them.
- Document visibility controlsMark files internal-only, client-visible, or scope to specific users.
- Signed file URLsPrivate storage. Access via short-lived signed URLs.
- Audit logsCritical actions — logins, role changes, deletions, plan changes — are logged.
- Data backupsBackups are performed on the platform layer.
- Usage monitoringPlan usage and workspace activity are tracked.
- Secure authenticationPassword + Google OAuth via a managed auth provider.
- Permission checksEvery request is checked against workspace membership and role.
How it fits together
Every company has its own workspace. Client users only see data shared with them. Internal-only documents stay internal. Critical actions are logged and reviewable by workspace admins.
Security contact
For security concerns, reach us through the contact page and select "Security" as the reason.
Disclaimer: StacksMesh OS does not claim SOC 2, ISO 27001, HIPAA, or GDPR certification unless explicitly documented. This page describes technical controls in place today, not third-party certifications.