Tenant isolation
Each tenant runs on its own tenant database file, with host-based tenant resolution and application authorization checks before tenant data is read or mutated.
Security built for service businesses with real customer data.
PointMintz protects tenant and customer records with per-tenant isolation, role-based access, audit logs, hardened browser policies, encrypted transport, backup discipline, and compliance workflows surfaced in the product.
Access control
Tenant admin, staff, customer, and platform admin sessions are separated. Sensitive exports and privacy queues are restricted to privileged roles.
Transport and secrets
Local and hosted surfaces use HTTPS. Production secrets are kept out of source code and referenced through environment or managed secret stores.
Audit and retention
Security, admin, billing, privacy, and compliance events write audit evidence. Audit-retention exceptions are disclosed in the privacy policy and DPA materials.
Backups and recovery
Tenant backups use bounded restore windows and are tied to erasure workflows so verified deletion cannot silently reappear from stale replicas.
Compliance surfaces
Tenant admins can review DPA, PCI, HIPAA safeguards, licensing, insurance, and privacy-request posture from the Compliance Dashboard.