Security & audit
Accountable by default.
Every important action is logged with who did it, when, and what changed. Permissions are fine-grained, audit log is tamper-evident, data is encrypted. Compliance comes for free.
The problem
The trouble with trust at scale
As your team grows, you can't watch every transaction yourself. Cashiers ring sales, managers approve refunds, owners read reports — and somewhere along the way numbers stop matching what's on the shelf. You need to know who did what, when, and be able to prove it.
Our approach
Accountability built into every action
Every change writes an immutable audit entry — before and after, who and when. Custom roles let you grant exactly the permissions each person needs, no more. The audit log is hash-chained, so anyone trying to silently rewrite history breaks the chain. Encryption protects data in transit and at rest.
How it works
Three simple steps.
Define roles and permissions
Start with sensible defaults (Owner, Admin, Manager, Cashier). On Business and Enterprise, create custom roles for your exact org chart — sales-only, returns-only, read-only, audit-only.
Every action writes to the audit log
Sale completion, refund, stock adjustment, role change, permission grant, settings edit — all logged with the actor, the before-state, the after-state, and an immutable timestamp.
Verify integrity at any time
The audit log is a hash chain. Each entry references the hash of the previous one. Tamper with any row and the next verification run flags it. Owners + auditors can prove the log is unmodified.
What you get
Everything included.
- Default roles for common workflows (Owner, Admin, Manager, Cashier)
- Custom roles with fine-grained permissions (Business + Enterprise)
- Immutable audit log with hash-chain integrity
- Encryption in transit (TLS) and at rest
- 7-year audit retention on every tier
- Per-branch and per-action permission scoping
Related features
See every feature up close
Start a free trial and explore the system with your own products.