Your data. Protected at every layer.
SpaceOPS is built with defense-in-depth security practices. Every request is authenticated, every query is scoped, every byte is encrypted.
Row-level security
Every database query is scoped to the authenticated user’s organisation and role. Admins cannot see other organisations’ data. Janitors cannot see other janitors’ data. Clients only see their own buildings.
Authentication & access control
SpaceOPS uses industry-standard signed-token authentication with role-based access control. Four distinct roles (admin, supervisor, janitor, client) enforce the principle of least privilege across every screen and API endpoint.
Encryption
All data is encrypted in transit (TLS 1.2+) and at rest. Passwords are hashed and never stored in plain text.
Infrastructure
SpaceOPS runs on enterprise-grade cloud infrastructure with automatic backups, geographic redundancy, and 24/7 uptime monitoring. Our managed database layer enforces access policies at the data tier, isolates tenants at the row level, and is backed by battle-tested open-source technology trusted across the industry.
Audit trails
Platform-level audit logging tracks every significant action — who did what, when, and what changed. Payroll runs include creator and approver attribution with timestamps.
API security
API access (Enterprise plan) is authenticated via API keys with per-key rate limiting and usage tracking. Keys can be revoked instantly from the admin dashboard.
Trust, built into every query.
Start with a free account and see how role-based access works in practice.