Seal AuditAudit-first

Security

Built for regulated field operations.

SealAudit is designed so that every security and privacy decision supports auditable compliance workflows. This page explains how tenant isolation, encryption, access controls, and data minimization work together to protect your organization and your field teams.

Tenant isolation

Each SealAudit organization is a separate tenant with enforced data boundaries. No cross-tenant access is possible, even within shared infrastructure.

  • Each organization operates within its own logical tenant boundary
  • Cross-tenant data access is prevented at the query layer, not just the application layer
  • All API endpoints enforce tenant-scoped data access before returning records

Authentication and access control

SealAudit uses a dedicated identity provider with multi-factor authentication and role-based authorization.

  • Authentication is handled by Clerk, a purpose-built identity provider, with support for SSO and multi-factor authentication
  • Role-based access control separates owner, admin, manager, member, and auditor permissions
  • Role changes and organization membership events are recorded in the audit trail

Encryption

Data is encrypted in transit and at rest using industry-standard protocols and cloud-provider managed key infrastructure.

  • All traffic between browsers and SealAudit servers is encrypted with TLS
  • Data at rest is encrypted in the underlying database and storage infrastructure
  • Encryption key management follows cloud-provider best practices for rotation and access control

Data minimization

SealAudit collects only what is needed for workflow execution and audit defensibility. No data is gathered beyond what each workflow step explicitly requires.

  • SealAudit collects only the data needed to operate compliance workflows and maintain audit records
  • Location data is captured only when a workflow explicitly requires geolocation verification
  • Field users can decline location permission — the verification outcome is recorded as a denied attempt rather than silently ignored
  • Personal data is scoped to the minimum required for each workflow action type

Consent-based location collection

Geolocation verification is available as an optional workflow step. When enabled, field users are prompted through their browser to share their location. The browser permission model ensures that location data is never collected without explicit, informed consent. If a user declines or the browser cannot provide coordinates, the outcome is recorded as a verification attempt rather than silently skipped.

  • Geolocation verification uses the browser permission API, which requires explicit user consent before any coordinates are shared
  • Users are informed of the purpose of location collection at the point of each verification
  • Consent and denial outcomes are recorded as part of the verification evidence
  • Location data handling is designed to meet expectations under GDPR (EU), APP (Australia), and US state-level privacy regulations

Append-only audit trail

Every workflow completion, verification, and action generates an immutable audit record. Records are linked through a hash chain, forming a tamper-evident log that can be verified independently. No platform user — including organization owners — can edit or delete audit entries.

  • Workflow completions, verification outcomes, and action executions are stored as immutable records
  • Each record includes a hash reference that links it to the preceding entry, forming a tamper-evident chain
  • Records cannot be edited or deleted by platform users, including organization owners
  • Audit trail integrity can be verified independently through chain validation

Security and privacy inquiries

For questions about security posture, data handling, or compliance suitability for your jurisdiction, contact the team directly. We can provide additional detail on encryption standards, access controls, and data residency.

SealAudit welcomes responsible disclosure of security vulnerabilities. If you believe you have identified a security issue, please report it to our team with sufficient detail to reproduce and assess the finding. We acknowledge reports within two business days and aim to resolve confirmed issues promptly.

Start proving your compliance posture.

Explore the platform on a free Starter plan. No credit card, no sales call.