Enterprise security.
Full transparency.

All data encrypted with TLS 1.2+ in transit. OAuth tokens encrypted with AES-256-GCM. Connector credentials secured with Fernet symmetric encryption.

Every database query is scoped by tenant ID. No cross-tenant data access is possible. Row-level security enforced throughout the entire stack.

No AI agent can spend money, publish content, or take external action. Every recommendation requires explicit human approval with budget impact, risk assessment, and evidence.

6 distinct roles (super_admin, agency_operator, client_admin, client_member, approver, readonly) with granular permissions. Operator and client portals separated at middleware and API level.

Every state change logged with actor, action, target, and timestamp. Agent execution logs track model, tokens, duration, and confidence for every specialist run.

Per-section confidence scores, data source labeling, mock vs. live indicators, and full agent provenance. Users see exactly what data each recommendation is based on.

Authentication endpoints rate-limited to 20 requests per 60 seconds per IP. All inputs validated with Pydantic schemas and regex patterns. No arbitrary string injection.

No secrets stored in code. Environment-based configuration. API keys, OAuth tokens, and connector credentials encrypted at the application layer with Fernet.