Platform trust
Defense-in-depth across auth, tenant isolation, encryption, and audited admin actions.
Role-based access spans admin, partner, dispatcher, driver, and guest surfaces with least privilege defaults.
Tenant boundaries isolate company data at the service and query layers — not just UI filters.
Audit logs capture finance, credential, and dispatch overrides for downstream compliance reviews.
JWT sessions, OAuth, and MFA gates verify identity before route handlers run.
Policy checks validate tenant, role, and resource ownership per endpoint.
Sensitive mutations append immutable audit events with actor metadata.
Security questionnaires answer with concrete controls instead of promises.
OTAs verify isolation before sharing traveler PII.
Audit trails shorten root-cause analysis when anomalies appear.
TLS 1.2+ terminates at the edge; internal service mesh mTLS is rolling out per region.
Secrets live in vault storage — never in git history or client bundles.
SIEM exports stream audit and auth failure events for enterprise tenants.
Penetration test findings feed a tracked remediation backlog each quarter.
Security team reviews RBAC matrices and data flow diagrams.
EU partners document sub-processors and isolation tests.
Compliance searches audit logs for credential misuse.
