Trust, by design—not by promise.
We're early. We won't pretend otherwise. Here's what's already built, and what's on the runway before GA.
Every hop encrypted.
Every tenant isolated.
TLS 1.3 on the wire, AES-256 at rest, and row-level org scoping on every query — the boring parts done right before we ask anyone to trust us with theirs.
What's already in place.
Scoped API keys
Keys bind to an org, an app, an environment, and an optional channel. Rotate any key without downtime; revocation is immediate.
Encryption in transit and at rest
TLS 1.3 on every hop. AES-256 on stored events and trace payloads. No plaintext on disk, no plaintext in backups.
Tenant isolation
Every event, span, and webhook delivery is scoped to your organization at the row and query layer. No shared indexes across tenants.
Immutable audit log
Every API key rotation, member invite, role change, and org-level action is recorded with actor, client IP, timestamp, and delta. Exportable on request.
Role-based access control
Owner, admin, and user roles with hierarchy-based authorization. Ownership transfer is a first-class action, not a support ticket.
Hardened auth and transport
SOC 2 controls across session handling, password policy, session fixation, CSRF, and rate limiting landed in the April hardening pass. Documented in the repo.
Honest, up to date, no theater.
The April hardening pass landed the technical controls behind SOC 2 Type II — access review, change management, encryption, logging, incident response, and the auth/transport/data protection trio. We have not engaged an auditor yet. Saying "SOC 2 in progress" would be misleading, so we don't. When we start an observation window, this page gets the auditor and start date.
Responsible disclosure
Found something? Email security@axonpush.xyz. We acknowledge within 24 hours and credit you publicly on fix.