Encryption in transit & at rest
All data encrypted with TLS 1.3 in transit and AES-256 at rest in Supabase Postgres.
Security at ASHR.work
Your people's data is the most sensitive data your business owns. We design ASHR.work to treat it that way — by default, not by checklist.
Row-level security (RLS)
Every table is protected by Postgres row-level security policies — employees only see what their role allows.
Role-based access control
Admin, Manager and Employee roles enforced both in the UI and database.
Audit logging
Sensitive actions are logged for compliance review and incident response.
Reliable infrastructure
Hosted on Vercel + Supabase — globally distributed, auto-scaling and 99.9% uptime SLO.
GDPR, CCPA & DPDP aligned
Data subject rights, consent and retention workflows designed around EU GDPR, US CCPA, UK GDPR and India DPDP.
Questions about our security posture?
We're happy to answer vendor-security questionnaires.