Controls in place. And what is on the roadmap.
Each control is listed with its status. Items marked roadmap are not yet available — listed so procurement can plan against real dates.
Five built-in roles (Operator, Reviewer, Compliance Lead, Auditor, Admin). Permissions scoped per fleet workspace. SAML SSO and SCIM provisioning available on Enterprise.
Append-only event log for every operator action, system event and rule decision. Filterable by actor, subject, action and rule version. Exportable as signed CSV / JSON.
Documents and extracted fields encrypted at rest with AES-256 and in transit with TLS 1.2+. Per-tenant data segregation. Customer-managed keys (BYOK) on Enterprise.
No automatic approvals on warn or fail outcomes. Configurable approval thresholds per fleet. Two-person review available for stemmings above a configurable mt threshold.
Default 7-year WORM retention aligned with IMO record-keeping expectations. Configurable per fleet, per document class. Deletion requires Admin + Compliance Lead approval.
Single-tenant VPC deployment in EU and SG regions. On-premise reference architecture for fleet operators with restricted data egress. Available to qualified Enterprise customers.