Security Overview
Assistra applies security controls designed for a multi-tenant SaaS platform.
Tenant isolation
Tenant data is separated by tenant scope, authorization checks and cross-tenant access protections.
Access controls
Roles, subscription gates, rate limits, password reset protections, Google login controls and owner role safeguards help reduce account and privilege abuse.
Runtime safeguards
Webhook signature validation, secret protection, upload validation, queue safety, maintenance mode, kill switches and audit logs help protect production operations.
Shared responsibility
Tenants must protect their own staff accounts, channel credentials, webhook endpoints, Meta accounts, Telegram bots and customer data practices.