CommandiX Open demo

Security and trust

Built for leadership data that cannot be casual.

Commandix handles execution data across goals, teams, projects, tasks, constraints, deals, and operating history. The platform is designed around tenant isolation, hardened delivery, and controlled access.

Tenant isolation

Core records are scoped by tenant, including users, units, tasks, goals, projects, deals, files, sessions, notifications, audit logs, and security events.

Authentication controls

Commandix supports local auth, Microsoft 365 and Google provider flows, account lockout, password history, forced password change, session tracking, and MFA support.

Hardened edge

Production traffic uses HTTPS, HSTS, security headers, Nginx, PM2, rate limiting, CrowdSec scanner detection, and firewall bouncer enforcement.

Data access discipline

Manager and executive views are gated by role, department ownership, or managed unit relationships. Superadmin access is explicitly separated from tenant owner access.

Operational auditability

Security events, sessions, login outcomes, and application audit records give administrators visibility into high-risk actions and access patterns.

Compliance readiness

Trust Center, GDPR readiness, DPA overview, subprocessor disclosure, cookie policy, and SOC2 readiness material are available for procurement review.

Need security review details?

Send your questionnaire, vendor review process, or procurement checklist. Start with the Trust Center, then route deeper review through sales and security.

Open Trust Center