Multi-tenant, role-driven, audit-logged.
Fully customisable user-level roles, per-tenant row-level security, and audit logging on every action. Enterprise-grade defaults without an enterprise config bill.

Who it's for
Admins
Design roles that fit your org, not the vendor's.
Security officers
Auditable, exportable, defensible.
Everyone else
Only sees what they should — nothing more.
Why teams love it
Outcomes, not just features.
Fully customisable roles
Not fixed tiers — build the exact permissions you need.
Per-tenant isolation
Row-level security enforced in the database, not the UI.
Audit log on everything
Every create, read, update and delete recorded.
SSO-ready
SAML and social sign-in options for enterprise plans.
How it works
Design roles
Permissions per resource, per action.
Assign & audit
Assign roles; every action logged with actor and context.
Export & prove
Audit exports for compliance reviews.
Everything included
Access
Custom roles
Fine-grained permissions per resource/action.
Row-level security
Enforced at the database layer.
Assurance
Audit log
Every action, exportable.
SSO & MFA
SAML SSO on enterprise; MFA available on all plans.
Plays nicely with
Frequently asked questions
Is data isolated per customer?+
Yes — row-level security enforces isolation in the database, not just the UI.
Do you support SSO?+
SAML SSO is available on enterprise plans; Google sign-in is standard.
Pairs well with
Try Security & Roles free for 14 days
No credit card required for demo requests.