Security & trust, built in

Your customers' data is your most valuable asset. Samqor protects it with enterprise-grade controls — on every plan.

Tenant isolation

PostgreSQL row-level security (FORCE mode) isolates every tenant's data at the database layer — not just in application code.

Encryption

TLS in transit and field-level encryption at rest for sensitive data, with keys never co-resident with ciphertext.

Access & identity

SSO via SAML & OIDC, SCIM provisioning, MFA/TOTP with step-up re-auth for high-risk actions, and IP allowlisting.

Audit & governance

Tamper-evident, hash-chained audit logs for platform and tenant actions, plus AI governance with PII masking and zero data retention.

Compliance

SOC 2-aligned controls, GDPR data-subject rights (export & erasure), DPA and a published subprocessor list.

Secure by design

Fail-closed startup validation, SSRF guards, rate limiting, security headers, WAF protection, and internal security testing with static analysis (SAST) in CI.

Data-subject rights & transparency

  • Self-serve data export
  • Right-to-erasure honored
  • Configurable retention windows
  • Consent management & gating
  • Published subprocessor list
  • Signed DPA available