Security & trust, built in
Your customers' data is your most valuable asset. Samqor protects it with enterprise-grade controls — on every plan.
Tenant isolation
PostgreSQL row-level security (FORCE mode) isolates every tenant's data at the database layer — not just in application code.
Encryption
TLS in transit and field-level encryption at rest for sensitive data, with keys never co-resident with ciphertext.
Access & identity
SSO via SAML & OIDC, SCIM provisioning, MFA/TOTP with step-up re-auth for high-risk actions, and IP allowlisting.
Audit & governance
Tamper-evident, hash-chained audit logs for platform and tenant actions, plus AI governance with PII masking and zero data retention.
Compliance
SOC 2-aligned controls, GDPR data-subject rights (export & erasure), DPA and a published subprocessor list.
Secure by design
Fail-closed startup validation, SSRF guards, rate limiting, security headers, WAF protection, and internal security testing with static analysis (SAST) in CI.
Data-subject rights & transparency
- Self-serve data export
- Right-to-erasure honored
- Configurable retention windows
- Consent management & gating
- Published subprocessor list
- Signed DPA available