How does AbstractOps handle data security and access control to comply with compliance requirements?

We’re building security to be a core competency. People are the weak links in any system, and who has access to information is one of those important questions that is often overlooked.

One thing you can do with our system is permission a class—for example, ensure that an HR manager has access to all offer letters. 

You can also add provision access to individual instances. Let’s say you have a Director of Operations and they're hiring an operations associate. The HR manager can invite them to participate in that hiring workflow, but just in that one instance—so they can’t see the offer letters for everyone else. The same is true of NDAs, customer contracts, vendor agreements, invoices, and so on.

Building our security around people considerations ensures that we’re building on strong security foundations -- not just internally, but for our customers’ internal workflows as well.