Tenant isolation
Core records are scoped by tenant, including users, units, tasks, goals, projects, deals, files, sessions, notifications, audit logs, and security events.
Security and trust
Commandix handles execution data across goals, teams, projects, tasks, constraints, deals, and operating history. The platform is designed around tenant isolation, hardened delivery, and controlled access.
Core records are scoped by tenant, including users, units, tasks, goals, projects, deals, files, sessions, notifications, audit logs, and security events.
Commandix supports local auth, Microsoft 365 and Google provider flows, account lockout, password history, forced password change, session tracking, and MFA support.
Production traffic uses HTTPS, HSTS, security headers, Nginx, PM2, rate limiting, CrowdSec scanner detection, and firewall bouncer enforcement.
Manager and executive views are gated by role, department ownership, or managed unit relationships. Superadmin access is explicitly separated from tenant owner access.
Security events, sessions, login outcomes, and application audit records give administrators visibility into high-risk actions and access patterns.
Trust Center, GDPR readiness, DPA overview, subprocessor disclosure, cookie policy, and SOC2 readiness material are available for procurement review.
Send your questionnaire, vendor review process, or procurement checklist. Start with the Trust Center, then route deeper review through sales and security.